view TODO @ 340:454a34b2dfd1

Fixes from Erik Hovland: cli-authpubkey.c: fix leak of keybuf cli-kex.c: fix leak of fingerprint fp cli-service.c: remove commented out code dropbearkey.c: don't attepmt to free NULL key on failure common-kex.c: only free key if it is initialised keyimport.c: remove dead encrypted-key code don't leak a FILE* loading OpenSSH keys rsa.c, dss.c: check return values for some libtommath functions svr-kex.c: check return value retrieving DH kex mpint svr-tcpfwd.c: fix null-dereference if remote tcp forward request fails tcp-accept.c: don't incorrectly free the tcpinfo var
author Matt Johnston <matt@ucc.asn.au>
date Fri, 07 Jul 2006 09:17:18 +0000
parents 94ee16f5b8a8
children 0cbe8f6dbf9e
line wrap: on
line source
Current:

Things which might need doing:

- default private dbclient keys

- Make options.h generated from configure perhaps?

- handle /etc/environment in AIX

- check that there aren't timing issues with valid/invalid user authentication
  feedback.

- Binding to different interfaces

- CTR mode
- SSH_MSG_IGNORE sending to improve CBC security
- DH Group Exchange possibly, or just add group14 (whatever it's called today)

- fix scp.c for IRIX

- Be able to use OpenSSH keys for the client? or at least have some form of 
  encrypted keys.

- Client agent forwarding

- Handle restrictions in ~/.ssh/authorized_keys ?