Go to advanced search

by oittaa
Wed Nov 25, 2015 6:30 pm
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Re: Predictable SSH host keys

To to OP - please report the issue on github, and supply a source code patch. This will then be peer reviewed and included in the source tree if necessary.
Can you point me to the correct Github page, where regenerate_ssh_host_keys is hosted?
by oittaa
Wed Nov 25, 2015 2:29 pm
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Re: Predictable SSH host keys

Here's a way to patch the startup script without a binary patch. put this to /tmp/raspbian.patch --- /tmp/orig/etc/init.d/regenerate_ssh_host_keys 2015-11-21 22:33:43.953655590 +0200 +++ /tmp/patched/etc/init.d/regenerate_ssh_host_keys 2015-11-25 05:28:39.074387956 +0200 @@ -16,6 +16,7 @@ case "$1" ...
by oittaa
Wed Nov 25, 2015 2:12 pm
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Re: Predictable SSH host keys

Joe Schmoe wrote:
I'm sorry, but are you blind?
Another -5 for DL.

Looks like he is dipping into the minus numbers on the week.
Was it too hard to test what it actually does?
by oittaa
Wed Nov 25, 2015 1:46 pm
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Re: Predictable SSH host keys

What have you changed? How do we know your ZIP file isn't a virus or something that will totally compromise our systems? If you have an issue with the kernel then report it at https://github.com/raspberrypi/linux don't post random ZIP files on the forum. [Mod edited for insult-slinging - if we see ...
by oittaa
Wed Nov 25, 2015 5:07 am
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Re: Predictable SSH host keys

You can compare the resulting boot partitions: head -c 67108864 2015-11-21-raspbian-jessie.img | sha256sum head -c 67108864 2015-11-21-raspbian-jessie-patched.img | sha256sum Output from both commands should be: f4fed8b6ba53ff54ce32a7cbee60b2acbfe32bdd9ccc53043ae09ff067893d65 - Then compare the root...
by oittaa
Wed Nov 25, 2015 4:39 am
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Re: Predictable SSH host keys

Patch to seed /dev/urandom before generating SSH keys. Requires rdiff. SHA256 3b6c063ad5bb02d9a62270b6672fb9a1aa055c5644d4d2e7b73a17d0ba6086e6 2015-11-21-raspbian-jessie.img.patch.zip unzip 2015-11-21-raspbian-jessie.img.patch.zip rdiff patch 2015-11-21-raspbian-jessie.img 2015-11-21-raspbian-jessie...
by oittaa
Tue Nov 24, 2015 11:56 pm
Forum: Raspbian
Topic: Predictable SSH host keys
Replies: 18
Views: 37605

Predictable SSH host keys

Hello, Raspbian (2015-11-21-raspbian-jessie.zip SHA1: ce1654f4b0492b3bcc93b233f431539b3df2f813) doesn't enable hardware random number generator by default. This causes generation of predictable SSH host keys on the first boot. As soon as the systems starts up systemd-random-seed tries to seed /dev/u...

Go to advanced search