Mercurial > dropbear
comparison TODO @ 118:5312ca05ed48 private-rez
propagate of 717950f4061f1123659ee87c7c168805af920ab7 and 839f98f136788cc1466e4641bf796f96040a085d from branch 'matt.dbclient.authpam' to 'matt.dbclient.rez'
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sun, 12 Sep 2004 04:56:50 +0000 |
| parents | 88e0a1ad951a |
| children | b9d3f725e00b |
comparison
equal
deleted
inserted
replaced
| 57:3b2a5a1c4347 | 118:5312ca05ed48 |
|---|---|
| 1 Current: | 1 Current: |
| 2 | 2 |
| 3 Things which need doing: | 3 Things which might need doing: |
| 4 | 4 |
| 5 - Make options.h generated from configure perhaps? | 5 - Make options.h generated from configure perhaps? |
| 6 | 6 |
| 7 - investigate self-pipe? | 7 - Improved queueing of unauthed connections |
| 8 | |
| 8 - fix agent fwd problems | 9 - fix agent fwd problems |
| 9 - improve channel window adjustment algorithm (circular buffering) | |
| 10 | 10 |
| 11 - Don't use pregenerated AES tables | 11 - handle /etc/environment in AIX |
| 12 | 12 |
| 13 - check PRNG | |
| 14 - check that there aren't timing issues with valid/invalid user authentication | 13 - check that there aren't timing issues with valid/invalid user authentication |
| 15 feedback. | 14 feedback. |
| 16 | 15 |
| 17 - IP6 (binding to :: takes over ipv4 as well, sigh. If anyone wants to suggest | 16 - Binding to different interfaces |
| 18 a clean way (ie no V4MAPPED or setsockopt things) please let me know :) | |
| 19 - Binding to different interfaces (see ipv6 probably) | |
| 20 | 17 |
| 21 - PAM ?? | |
| 22 - inetd | |
| 23 - possible RSA blinding? need to check whether this is vuln to timing attacks | 18 - possible RSA blinding? need to check whether this is vuln to timing attacks |
| 19 - check PRNG | |
| 24 - CTR mode, SSH_MSG_IGNORE sending to improve CBC security | 20 - CTR mode, SSH_MSG_IGNORE sending to improve CBC security |
| 25 - DH Group Exchange possibly | 21 - DH Group Exchange possibly, or just add group14 (whatever it's called today) |
| 26 | 22 |
| 27 - Use m_burn for clearing sensitive items in LTM/LTC | 23 - Use m_burn for clearing sensitive items in LTM/LTC |
| 28 | 24 |
| 29 - fix scp.c for IRIX | 25 - fix scp.c for IRIX |
| 26 | |
| 27 - Be able to use OpenSSH keys for the client? or at least have some form of | |
| 28 encrypted keys. | |
| 29 - Client agent forwarding |