Asterisk IAX2 keys in Debian
Yesterday the Debian team issued a security advisatory about OpenSSL.
They made a mistake in 2006 that made the PRNG predictable. Because of this, all keys generated using this OpenSSL library have to be considered compromised.
This means that your asterisk IAX2 keys should be considered compromised as well.
I advise you to regenerate them after installing the security update.
Copyright (c) 2006-2008 Michiel van Baak. Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the section entitled "GNU Free Documentation License".
