Then you probably should get on this one… [Problems with Random Number Generator]
While it looks like an arb openssl bug, 2 seconds of reading should get you to:
-snip-
It is strongly recommended that all cryptographic key material which has
been generated by OpenSSL versions starting with 0.9.8c-1 on Debian
systems is recreated from scratch.
&&
Affected keys include SSH keys, OpenVPN keys, DNSSEC keys, and key
material for use in X.509 certificates and session keys used in SSL/TLS
connections.
-snip-
Note that even if you upgraded the package, you probably need to regenerate your old keys..
/mh
PS.. Sorry about the loooooong blog silence.. theres been lots of coolness, but most of the guys have actually had their heads down on projects, and either havnt been blogging, or have blogged -> but we would get killed if we spake about it..