• SSH Keys Generated on Debian/Ubuntu Compromised

    mojombo 13 May 2008

    A security warning posted on the Debian security list today warns that SSH keys generated on Debian based systems (including Ubuntu) have a highly predictable random number generator. This corroborates what we’ve been seeing here at GitHub.

    Luciano Bello discovered that the random number generator in Debian’s
    openssl package is predictable. This is caused by an incorrect
    Debian-specific change to the openssl package (CVE-2008-0166). As a
    result, cryptographic key material may be guessable.

    This is a Debian-specific vulnerability which does not affect other
    operating systems which are not based on Debian. However, other systems
    can be indirectly affected if weak keys are imported into them.

    It is strongly recommended that all cryptographic key material which has
    been generated by OpenSSL versions starting with 0.9.8c-1 on Debian
    systems is recreated from scratch. Furthermore, all DSA keys ever used
    on affected Debian systems for signing or authentication purposes should
    be considered compromised; the Digital Signature Algorithm relies on a
    secret random value used during signature generation.

    We STRONGLY recommend that you discontinue use of any keys generated under this configuration and update your GitHub keys after you’ve patched your Debian based system.

  • Comments

    jmazzi Tue May 13 12:49:07 -0700 2008

    “This corroborates what we’ve been seeing here at GitHub.” Could you elaborate on that point please? :)

    elliottcable Tue May 13 16:38:54 -0700 2008

    jmazzi: If I remember correctly, there was an incident or two where two people had the exact same SSH keys in the GitHub database. Chris twittered it at the time, you really should follow him.

    mojombo Wed May 14 10:19:58 -0700 2008

    jmazzi: we identified several cases where different users (with no knowledge of each other) generated the same public keys. We’ve notified all parties and revoked the keys. All instances of this were caused by keys generated on Ubuntu.

    dustin Thu May 15 10:25:40 -0700 2008

    Is it possible for you guys to check the keys against list this guy generated? It seems like you may be able to proactively notify users and project owners if they have a key that is at risk without too much effort.

    jf Sun Jun 01 07:34:51 -0700 2008

    hi folks, when does a key change in my account take place? I’ve regenerated, and uploaded my new public key already, made sure that it is not in the vulnerable list, and yet when pushing, I still get “Permission denied (publickey)”?

    mattn Mon Sep 28 00:41:13 -0700 2009

    It seems that ssh.github.com:443 does not work.

    ikbisitoot Sat Oct 03 22:28:05 -0700 2009

    i am using SSH-2.0-OpenSSH_4.6p1 Debian-5build1 and still getting “Permission denied (publickey)” , tried generating a new key with no luck , what should i do ?

    waltjones Tue Oct 27 23:28:52 -0700 2009

    My key, generated in the Cygwin environment on Windows, stopped working over this weekend. Is this related? Generating new keys from a different environment fixed the issue.

    Please log in to comment.