From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 80867 invoked by alias); 13 Jan 2016 15:00:48 -0000 Mailing-List: contact overseers-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Archive: List-Post: List-Help: , Sender: overseers-owner@sourceware.org Received: (qmail 80848 invoked by uid 89); 13 Jan 2016 15:00:47 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-1.1 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_NONE,SPF_NEUTRAL autolearn=no version=3.3.2 spammy=H*RU:sk:outboun, Hx-spam-relays-external:sk:outboun, HX-HELO:sk:outboun, H*Ad:D*co.uk X-HELO: outbound2e.ore.mailhop.org Received: from outbound2e.ore.mailhop.org (HELO outbound2e.ore.mailhop.org) (54.149.88.251) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with (AES256-GCM-SHA384 encrypted) ESMTPS; Wed, 13 Jan 2016 15:00:47 +0000 Received: from cgf.cx (unknown [173.76.44.96]) by outbound2.ore.mailhop.org (Halon Mail Gateway) with ESMTPA; Wed, 13 Jan 2016 15:01:26 +0000 (UTC) Received: from ednor (ednor [192.168.187.5]) by cgf.cx (Postfix) with SMTP id 756BE600BC; Wed, 13 Jan 2016 10:00:41 -0500 (EST) Received: by ednor (sSMTP sendmail emulation); Wed, 13 Jan 2016 10:00:41 -0500 Date: Wed, 13 Jan 2016 15:00:00 -0000 From: Christopher Faylor To: overseers@sourceware.org, Brian Gough Subject: Re: sourceware/gcc ssh public key analysis Message-ID: <20160113150041.GA6589@ednor.casa.cgf.cx> Mail-Followup-To: overseers@sourceware.org, Brian Gough References: <20160112220925.51505.qmail@sourceware.org> <56962789.40307@network-theory.co.uk> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <56962789.40307@network-theory.co.uk> User-Agent: Mutt/1.5.20 (2009-06-14) X-SW-Source: 2016-q1/txt/msg00022.txt.bz2 On Wed, Jan 13, 2016 at 10:31:37AM +0000, Brian Gough wrote: >On 12/01/16 22:09, root@sourceware.org wrote: >> Due to recent user reports of difficulty logging onto the server >> known as sourceware.org / gcc.gnu.org / etc., we are scanning >> your installed ssh public keys for continued compatibility. >> Here is your analysis. >> >> FILENAME /home/bjg/.ssh/authorized_keys >> FILEDATE 2008-05-21 >> SHELL you have shell access >> RSA 1024: weak rsa key >> >> You have no strong keys. If you still need access to sourceware/gcc, >> consider generating new key-pair with % ssh-keygen -t rsa -b 4096 >> and if necessary, sending the .pub part to. >> >> Happy hacking! > >You can remove the account below, it is no longer in use. Thank you. Thanks for letting us know. Account removed.