[pkg-cryptsetup-devel] Bug#714952: Bug#714899: dropbear's cryptroot setup does not use the system's host keys
Karl O. Pinc
kop at meme.com
Thu Jul 4 16:17:49 UTC 2013
On 07/04/2013 09:55:21 AM, Karl O. Pinc wrote:
> On 07/04/2013 01:25:59 AM, Jérémy Bobbio wrote:
> > It all depends on one's threat model, but I think that blindly
> > reducing
> > the security of the system SSH key is not a good idea…
>
> Fair enough.
>
> A couple of thoughts come to mind. There should
> at least be a note of this made in section 8 of the
> README.Debian for cryptsetup. (I'll see about
> sending a patch.)
Done. See Bug#714952. (Reverse reference Bug#714899.)
You might consider referencing the cryptsetup README.Debian
from the dropbear README.Debian. Or even moving the
dropbear section from the cryptsetup readme into the
dropbear readme and having cryptsetup reference dropbear.
Or not.
Regards,
Karl <kop at meme.com>
Free Software: "You don't pay back, you pay forward."
-- Robert A. Heinlein
More information about the pkg-cryptsetup-devel
mailing list