Lenny Domnitser’s
domnit.org

⇙ Jump to content

explicit

This is a static archive of the domnit.org blog,
which Lenny Domnitser wrote between 2006 and 2009.

NearlyFreeSpeech.Net Kicks Ass

The web host I use for domnit.org contacted me today regarding a vulnerability that was exposed in Debian yesterday.

Hello,

You are being contacted because an ssh key vulnerability in Debian-derived
Linux systems has been detected that may affect you.

NearlyFreeSpeech.NET does not run Debian Linux or any derived systems and is
not affected by this issue. However, we allow our members to load ssh keys
to allow passwordless access to edit their site content and you have availed
yourself of this feature.

Upon announcement of this issue, NearlyFreeSpeech.NET has obtained and run
software designed to identify potentially vulnerable keys. Your public key
was identified as potentially vulnerable. That doesn’t mean that it is,
only that it might be.

Therefore, if your ssh keys were generated on a Debian-derived Linux system,
please investigate this issue and determine whether you need to regenerate
your keys. More information is available here:

http://wiki.debian.org/SSLkey

Please do not hesitate to contact us via our secure support facility if you
need us to replace your key, or if you need further assistance from us.

Thanks,
NearlyFreeSpeech.NET Member Support

And now it’s all sorted out, not only with the SSH server I use to connect to NearlyFreeSpeech.Net, but also with my other SSH keys and servers.

This goes above and beyond what I expect from a hosting company—I can’t recommend them enough. They don’t run a referral program, I’m just linking because they’re great: NearlyFreeSpeech.net.