if i understand correctly the impact of the debian openssh CVE-2008-0166 any system which uses keys generated at debian is vulnerable now. wouldn'tbe conveniet to add ssh-vulnkey to openssh as described in http://wiki.debian.org/SSLkeys to have easy test for compromised keys ? (sorry if i misunderstand something.) Reproducible: Always
*** This bug has been marked as a duplicate of bug 221759 ***