OK, so while all my co-workers took a half-day to check their systems for each of the openssh and dns exploits earlier this year, I foolishly let it slide, thinking I had more important things to do. So while I didn't procrastinate so long as to get hacked/phished/etc. I did wait until tonight. So after a few hours research (and a couple educational jems, I've finally regenerated all my system's host keys and have deleted all my .ssh keys and regenerated them on systems where I have console access, relying on ssh agent forwarding everywhere else (thanks Josh). As for DNS, I've redirected my router to opendns which is looking to be an excellent service (thanks John). So I should be all buttoned up again... gah, I just wish this stuff would stop breaking...