Subject: IMPORTANT: Mandatory password and ssh key change by 2011-11-30

Kevin Fenzi kevin at
Wed Oct 12 17:41:07 UTC 2011

On Wed, 12 Oct 2011 13:30:19 -0400
Jeff Layton <jlayton at> wrote:

> I have a question not covered here: I just changed my ssh key a week
> or two ago in the wake of the compromise...
> Is my new key sufficient? I really don't want to have to re-distribute
> my key to all of the various servers again.

Well, we talked about this some, but we don't have fingerprints from
several weeks ago to check people against to confirm they uploaded a
new key. 

Would it be possible for you to just make a new fedora only key? 

Then you only need to upload that to fedora and set your .ssh/config to
use that key for * 


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
Url : 

More information about the devel mailing list