This is related to a new (critical) vurnurability affecting openSSL in debian 4.0 ( see http://lists.debian.org/debian-security-announce/2008/msg00152.html ) . Could someone be so kind as to give me input on my checklist: This is not really ISPConfig's fault but I'm going to have to regenerate all ssl certificates on all systems. So... for debian "perfect setup" what would I need to do? 1. regenerate SSL certificates for ISPConfig 2. regenerate SSL certificates for IMAP-SSL / POP3-SSL 3. Re-generate customer self-signed certificates. (ok, know how this is done) 4. re-generate keys for SSH (done with apt-get upgrade) Anything else I might've missed? How do I regenerate SSL certificates for 1 and 2?