-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 10 Jun 2008 09:09:48 -0400 Source: openssl-blacklist Binary: openssl-blacklist openssl-blacklist-extra Architecture: source all Version: 0.4 Distribution: unstable Urgency: low Maintainer: Kees Cook <kees@outflux.net> Changed-By: Jamie Strandboge <jamie@ubuntu.com> Description: openssl-blacklist - list of blacklisted OpenSSL RSA keys openssl-blacklist-extra - list of non-default blacklisted OpenSSL RSA keys Closes: 483500 Changes: openssl-blacklist (0.4) unstable; urgency=low . * allow checking of certificate requests * only check moduli with an exponent of 65537 (the default on Debian/Ubuntu) * update gen_certs.sh for when ~/.rnd does not exist when openssl is run which can happen with openssl 0.9.8g and higher * update gen_certs.sh to use '0' (in case of PID randomization) * added more examples * only prompt once for password (Closes: #483500) * properly cache database reads when bits are same * added '-m' and '-b' arguments. This is helpful for applications calling openssl-vulnkey when the modulus and bits are known, such as openvpn. * man page updates * added test.sh * added blacklists for when ~/.rnd does not exist when openssl is run (LP: #232104) * added 512 bit and partial 4096 blacklists (need le64) (LP: #231014) * reorganized source databases, and ship the new gen_certs.sh format * debian/rules: updated to use new blacklist format and organization * create openssl-blacklist-extra package (but don't ship 4096 yet) Checksums-Sha1: 185ddc8aa22b01e8f6f38bc933c73070871f9499 1081 openssl-blacklist_0.4.dsc 45792725b913a5e843fb0ae4fbf89e9efd1a0c6f 30175858 openssl-blacklist_0.4.tar.gz 41855263cb41ad89739eb038f50a86614c5a486f 6333310 openssl-blacklist_0.4_all.deb 1ff6b5fee914bfa3995f4de7eca1a703bc6c44b0 3160374 openssl-blacklist-extra_0.4_all.deb Checksums-Sha256: dbdbebb7319c4b4840de2c7b88128824148c6003a3b93019863a9395bca0acf3 1081 openssl-blacklist_0.4.dsc 2a9491dc1d3e4511307342217d58fb553699e1bbe51364fbc729d1b61c5adecf 30175858 openssl-blacklist_0.4.tar.gz 2880f46f22ad476d6f57c3599dd8abe35534cb1c4e9d1cf775b0e679fea444c1 6333310 openssl-blacklist_0.4_all.deb 505fb23ef8cf1554984bff70b55bc7b295aa968407e7ee33931ccdf049e5dd80 3160374 openssl-blacklist-extra_0.4_all.deb Files: 02f74893a2341c680ea8db1dc2b4a67c 1081 net optional openssl-blacklist_0.4.dsc ddaae8869033957fe1ae78214f846e2a 30175858 net optional openssl-blacklist_0.4.tar.gz 92b0db2cd7e2171e23ea28cd546e3599 6333310 net optional openssl-blacklist_0.4_all.deb ee8d574037c937b481fa7bc55892d845 3160374 net optional openssl-blacklist-extra_0.4_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Kees Cook <kees@outflux.net> iEYEARECAAYFAkhQK/EACgkQH/9LqRcGPm0lYQCcDWjy/JcWTudXzFqLhuaM8Dtt xHgAnjwpzAxGAgbuv/9Lf90eHt1QJkcn =BXWL -----END PGP SIGNATURE----- Accepted: openssl-blacklist-extra_0.4_all.deb to pool/main/o/openssl-blacklist/openssl-blacklist-extra_0.4_all.deb openssl-blacklist_0.4.dsc to pool/main/o/openssl-blacklist/openssl-blacklist_0.4.dsc openssl-blacklist_0.4.tar.gz to pool/main/o/openssl-blacklist/openssl-blacklist_0.4.tar.gz openssl-blacklist_0.4_all.deb to pool/main/o/openssl-blacklist/openssl-blacklist_0.4_all.deb
