if i understand correctly the impact of the debian openssh CVE-2008-0166
any system which uses keys generated at debian is vulnerable now.
wouldn'tbe conveniet to add ssh-vulnkey to openssh as described in
http://wiki.debian.org/SSLkeys to have easy test for compromised keys ? (sorry if i misunderstand something.)
*** This bug has been marked as a duplicate of bug 221759 ***