May 11, 2008 - Weiqi Gao's Observations

Navigate

Tags

Recent Blog Entries

this is very, very, very serious and scary
(Via St. Louis Unix Users Group discuss mailing list.) Bojan Zdrnja on SANS Internet Storm Center: Couple of days ago Swa posted a diary about a critical Debian/Ubuntu PRNG security vulnerability. Today Matt wrote in to let us know that H D Moore po...
Patterns Of Learning Through Languages
Code To Joy has ignited a debate on the topic of You Should Learn New Languages. The post is in response to a Gustavo Duarte post titled Language Dabbling Considered Wasteful, which was carried on InfoQ four days ago. As always, I claim that both sid...
Friday Java Quiz: What's Your Favorite Java 7 Feature...
Like in past years, I'm following JavaOne from afar. All I have access to are the general sessions and attendee's blog reactions to specific sessions on JavaLobby, java.net, JavaBlogs, and StuffThatHappens. And on Tuesday's session, I heard Danny Cow...

Recent Responses

Re: this is very, very, very serious and scary
It's serious, it's scary, and it's been a big pain to deal with :-) The key (pardon the pun) thing to do to thoroughly solve this, is to upgrade all your servers to a version of an SSH server that will not accept the easily-compromised keys.
Re: this is very, very, very serious and scary
The article is pretty accurate, although it omits the finger-pointing, and the fact that DSA keys used on an affected Debian system could be compromised. This is also only for OpenSSL; it doesn’t affect GnuPG, or applications using encryption from Mozi...
Re: Patterns Of Learning Through Languages
Hi, Completly agree with the author. Thanks Prashant

I Read

There are no blog entries for the chosen time period.