Mercurial > dropbear
comparison TODO @ 69:59d16db56e9f
Simple text changes
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Thu, 12 Aug 2004 15:41:36 +0000 |
parents | 469950e86d0f |
children | a54d20c96178 |
comparison
equal
deleted
inserted
replaced
68:eee77ac31ccc | 69:59d16db56e9f |
---|---|
1 Current: | 1 Current: |
2 | 2 |
3 Things which need doing: | 3 Things which might need doing: |
4 | 4 |
5 - Make options.h generated from configure perhaps? | 5 - Make options.h generated from configure perhaps? |
6 | 6 |
7 - investigate self-pipe? | 7 - Improved queueing of unauthed connections |
8 | |
8 - fix agent fwd problems | 9 - fix agent fwd problems |
10 | |
9 - improve channel window adjustment algorithm (circular buffering) | 11 - improve channel window adjustment algorithm (circular buffering) |
10 | 12 |
11 - Don't use pregenerated AES tables | |
12 | |
13 - check PRNG | |
14 - check that there aren't timing issues with valid/invalid user authentication | 13 - check that there aren't timing issues with valid/invalid user authentication |
15 feedback. | 14 feedback. |
16 | 15 |
17 - IP6 (binding to :: takes over ipv4 as well, sigh. If anyone wants to suggest | 16 - Binding to different interfaces |
18 a clean way (ie no V4MAPPED or setsockopt things) please let me know :) | |
19 - Binding to different interfaces (see ipv6 probably) | |
20 | 17 |
21 - PAM ?? | |
22 - inetd | |
23 - possible RSA blinding? need to check whether this is vuln to timing attacks | 18 - possible RSA blinding? need to check whether this is vuln to timing attacks |
19 - check PRNG | |
24 - CTR mode, SSH_MSG_IGNORE sending to improve CBC security | 20 - CTR mode, SSH_MSG_IGNORE sending to improve CBC security |
25 - DH Group Exchange possibly | 21 - DH Group Exchange possibly, or just add group14 (whatever it's called today) |
26 | 22 |
27 - Use m_burn for clearing sensitive items in LTM/LTC | 23 - Use m_burn for clearing sensitive items in LTM/LTC |
28 | 24 |
29 - fix scp.c for IRIX | 25 - fix scp.c for IRIX |