Issue 63157 - Due to a possible security hazard, change my ssh key, please
Summary: Due to a possible security hazard, change my ssh key, please
Status: CLOSED FIXED
Alias: None
Product: Infrastructure
Classification: Infrastructure
Component: _openoffice.org CVS (obsolete) (show other issues)
Version: current
Hardware: All All
: P1 (highest) Trivial (vote)
Target Milestone: ---
Assignee: fridrich.strba
QA Contact: issues@www
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-03-14 11:30 UTC by fridrich.strba
Modified: 2008-12-05 17:12 UTC (History)
2 users (show)

See Also:
Issue Type: TASK
Latest Confirmation in: ---
Developer Difficulty: ---

Attachments
my new ssh key (615 bytes, text/plain)
2006-03-14 11:32 UTC, fridrich.strba 		no flags Details
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.
Description fridrich.strba 2006-03-14 11:30:48 UTC 
Due to a security hazard last night, I cannot be 100% sure that my key was not
compromised. Therefore, I reinstalled from scratch the box and regenerated a new
key. Could you, please, replace the existing key as soon as possible?
Comment 1 fridrich.strba 2006-03-14 11:32:06 UTC 
Created attachment 34858 [details]
my new ssh key
Comment 2 lsuarezpotts 2006-03-14 13:44:50 UTC 
support, please ask ops to upload this key.


Louis
Comment 3 Unknown 2006-03-14 13:49:15 UTC 
Taking this issue and will update you once it is done.

Thanks,
Kavitha
Support Operations
Comment 4 Unknown 2006-03-14 15:26:44 UTC 
Hi,

We have uploaded the key for you on to the server. Please verify and let us know
if you have any questions.

Thanks,
Kavitha
Support Operations
Comment 5 fridrich.strba 2006-03-14 16:21:14 UTC 
The tunnel could be established. Thanks. Verified.
Comment 6 fridrich.strba 2006-03-14 21:37:10 UTC 
Reopening to reassign
Comment 7 fridrich.strba 2006-03-14 21:38:34 UTC 
Please, remove the old ssh public key, because I cannot exclude that the
corresponding private key is compromised.
Comment 8 lsuarezpotts 2006-03-17 16:42:55 UTC 
assigning to support
Comment 9 Unknown 2006-03-17 19:08:19 UTC 
Hi fridrich
               Do you want to remove the public key which has been attached in
this issue from the server,are you sure about it and by the way do you want me
to upload a new key.If so please attach the new key so that we could upload the
new one,please get back to be at the earliest.

Regards,
Karthik
Support Operations
Comment 10 fridrich.strba 2006-03-18 22:33:40 UTC 
No, the key attached to this issue is a NEW key that I regenerated after I
concluded that I could not be 100% sure that the key from
http://qa.openoffice.org/issues/show_bug.cgi?id=36920 was safe. I would like to
remove the key from http://qa.openoffice.org/issues/show_bug.cgi?id=36920 it
means, my OLD key from the keyring so that nobody can use the corresponding
private key to write access ooo cvs repository in cas it is compromised.

Thanks to contact me if you need more precision

Fridrich
Comment 11 stx123 2006-03-19 13:40:15 UTC 
reassigning to support for removal of old key.
Comment 12 Unknown 2006-03-20 09:30:12 UTC 
Old key with the email address strbafridrich@shell.sf.net has been removed now.
can you please verify and let us know if you have questions further.

Thanks,
Kavitha
Support Operations
Comment 13 stx123 2006-04-08 15:15:14 UTC 
Fridrich, I guess without the old key you don't have a chance to verify the
removal of the key. So we should close this issue...
Comment 14 fridrich.strba 2006-04-08 19:54:44 UTC 
st: exactly. So, following your suggestion, closing
Comment 15 fridrich.strba 2006-04-08 19:55:37 UTC 
.
Comment 16 fridrich.strba 2008-11-25 15:08:19 UTC 
Reopening so that the key might be integrated in svn
Comment 17 jens-heiner.rechtien 2008-11-25 15:16:59 UTC 
Migrated to SVN.
Comment 18 jens-heiner.rechtien 2008-12-05 17:11:35 UTC 
Close issue.