Mercurial > dropbear
comparison TODO @ 118:5312ca05ed48 private-rez
propagate of 717950f4061f1123659ee87c7c168805af920ab7 and 839f98f136788cc1466e4641bf796f96040a085d from branch 'matt.dbclient.authpam' to 'matt.dbclient.rez'
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Sun, 12 Sep 2004 04:56:50 +0000 |
parents | 88e0a1ad951a |
children | b9d3f725e00b |
comparison
equal
deleted
inserted
replaced
57:3b2a5a1c4347 | 118:5312ca05ed48 |
---|---|
1 Current: | 1 Current: |
2 | 2 |
3 Things which need doing: | 3 Things which might need doing: |
4 | 4 |
5 - Make options.h generated from configure perhaps? | 5 - Make options.h generated from configure perhaps? |
6 | 6 |
7 - investigate self-pipe? | 7 - Improved queueing of unauthed connections |
8 | |
8 - fix agent fwd problems | 9 - fix agent fwd problems |
9 - improve channel window adjustment algorithm (circular buffering) | |
10 | 10 |
11 - Don't use pregenerated AES tables | 11 - handle /etc/environment in AIX |
12 | 12 |
13 - check PRNG | |
14 - check that there aren't timing issues with valid/invalid user authentication | 13 - check that there aren't timing issues with valid/invalid user authentication |
15 feedback. | 14 feedback. |
16 | 15 |
17 - IP6 (binding to :: takes over ipv4 as well, sigh. If anyone wants to suggest | 16 - Binding to different interfaces |
18 a clean way (ie no V4MAPPED or setsockopt things) please let me know :) | |
19 - Binding to different interfaces (see ipv6 probably) | |
20 | 17 |
21 - PAM ?? | |
22 - inetd | |
23 - possible RSA blinding? need to check whether this is vuln to timing attacks | 18 - possible RSA blinding? need to check whether this is vuln to timing attacks |
19 - check PRNG | |
24 - CTR mode, SSH_MSG_IGNORE sending to improve CBC security | 20 - CTR mode, SSH_MSG_IGNORE sending to improve CBC security |
25 - DH Group Exchange possibly | 21 - DH Group Exchange possibly, or just add group14 (whatever it's called today) |
26 | 22 |
27 - Use m_burn for clearing sensitive items in LTM/LTC | 23 - Use m_burn for clearing sensitive items in LTM/LTC |
28 | 24 |
29 - fix scp.c for IRIX | 25 - fix scp.c for IRIX |
26 | |
27 - Be able to use OpenSSH keys for the client? or at least have some form of | |
28 encrypted keys. | |
29 - Client agent forwarding |