From: cjwatson <>
Date: Mon, 23 Jun 2008 09:54:53 +0000 (+0000)
Subject: does not appear to suffer from Debian OpenSSL vulnerability
X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~cjwatson/git?a=commitdiff_plain;h=0cc8f8140196bef39100af6d90e6d9bca5cf4ba2;p=blog.git

does not appear to suffer from Debian OpenSSL vulnerability
---

diff --git a/2008-06-23-ssh-keygen.txt b/2008-06-23-ssh-keygen.txt
index 9e1be7ef..a2e31dbf 100644
--- a/2008-06-23-ssh-keygen.txt
+++ b/2008-06-23-ssh-keygen.txt
@@ -61,7 +61,9 @@ However, in case you do, here are a few reasons:</p>
  <li>
   Sure, Debian is in an awkward position here given the recent OpenSSL
   random number generation vulnerability. However, how do you know that
-  sshkeygen.com is running on a system that doesn't suffer from this?
+  sshkeygen.com is running on a system that doesn't suffer from this? (As it
+  happens, I have checked, and it doesn't appear to suffer from this
+  vulnerability - but most people won't check and won't know how to check.)
  </li>
 </ul>