i never did write a grumble post about the debian ssl exploit (great explanation of the issue and some motivational posters) and i’m still finding issues because of the new keys. the lastest issue i was trying to debug why i wasn’t able to connect to one of my boxes via nxclient. checking around in the logs i saw, “Offending key in /usr/NX/home/nx/.ssh/known_hosts”… simple enough.

after looking at that file and comparing it to /etc/ssh/ssh_host_rsa_key and /etc/ssh/ssh_host_rsa_key.broken i drop in the new keys and nxclient connects just fine. i would also recommend regenerating your personal keys if you use an authorized_keys[2] file

now that i’m back on ubuntu as my primary desktop, it’s about time i re-gen a pgp/gpg key and start using it in emails. i already do 90% of my point 2 point connections encrypted ( gotta love ssh and ssl ) it’s about time i give myself the opportunity to digitally sign things or encrypt my email. not cause i have something to hide, but because it’s fun playing with cryptography!

i setup my gpg keys on the command line, but seahorse looks like a good gui passwords and encryption keys manager. (that’s seahorses’s ubuntu applications menu name btw) i even published my public key on the mit gpg public keyserver. now to find someone to email. heh.

links

• configure pgp for evolution email client [ gui/cli install/config guide ]
• using openpgp with evolution
• ximian evolution guide : encryption
• gnome : evolution homepage
• gnome : seahorse homepage [ seriously, how much simpler can encryption get? ]

there isn’t enough i can say about gaim and off the record. there’s an off the record plugin for gaim and for adium so anyone on a linux, windows, or apple osx box can encrypt their aim conversations. seriously, check it out and don’t worry about people reading or sniffing your conversations.