2004-06-01 02:46:09 +00:00
|
|
|
Current:
|
|
|
|
|
|
2004-08-12 15:41:36 +00:00
|
|
|
Things which might need doing:
|
2004-06-01 02:46:09 +00:00
|
|
|
|
|
|
|
|
- Make options.h generated from configure perhaps?
|
|
|
|
|
|
2004-08-12 15:41:36 +00:00
|
|
|
- Improved queueing of unauthed connections
|
|
|
|
|
|
2004-06-01 02:46:09 +00:00
|
|
|
- fix agent fwd problems
|
|
|
|
|
|
2004-08-12 15:41:36 +00:00
|
|
|
- improve channel window adjustment algorithm (circular buffering)
|
2004-06-01 02:46:09 +00:00
|
|
|
|
|
|
|
|
- check that there aren't timing issues with valid/invalid user authentication
|
|
|
|
|
feedback.
|
|
|
|
|
|
2004-08-12 15:41:36 +00:00
|
|
|
- Binding to different interfaces
|
2004-06-01 02:46:09 +00:00
|
|
|
|
|
|
|
|
- possible RSA blinding? need to check whether this is vuln to timing attacks
|
2004-08-12 15:41:36 +00:00
|
|
|
- check PRNG
|
2004-06-01 02:46:09 +00:00
|
|
|
- CTR mode, SSH_MSG_IGNORE sending to improve CBC security
|
2004-08-12 15:41:36 +00:00
|
|
|
- DH Group Exchange possibly, or just add group14 (whatever it's called today)
|
2004-06-01 02:46:09 +00:00
|
|
|
|
2004-07-20 12:05:00 +00:00
|
|
|
- Use m_burn for clearing sensitive items in LTM/LTC
|
|
|
|
|
|
2004-06-01 02:46:09 +00:00
|
|
|
- fix scp.c for IRIX
|
2004-08-14 17:59:42 +00:00
|
|
|
|
|
|
|
|
- Be able to use OpenSSH keys for the client? or at least have some form of
|
|
|
|
|
encrypted keys.
|
|
|
|
|
- Client agent forwarding
|
