view TODO @ 183:5162f4e4021c

- note that we should warn if blocking on read from /dev/random
author Matt Johnston <matt@ucc.asn.au>
date Fri, 22 Apr 2005 14:52:27 +0000
parents b9d3f725e00b
children 5ccad7634388
line wrap: on
line source

Current:

Things which might need doing:

- Make options.h generated from configure perhaps?

- some sort of warning when blocking on random? (could be difficult,
  investigate alarm() perhaps)

- Improved queueing of unauthed connections

- handle /etc/environment in AIX

- check that there aren't timing issues with valid/invalid user authentication
  feedback.

- Binding to different interfaces

- possible RSA blinding? need to check whether this is vuln to timing attacks
- check PRNG
- CTR mode, SSH_MSG_IGNORE sending to improve CBC security
- DH Group Exchange possibly, or just add group14 (whatever it's called today)

- fix scp.c for IRIX

- Be able to use OpenSSH keys for the client? or at least have some form of 
  encrypted keys.

- Client agent forwarding

- Handle restrictions in ~/.ssh/authorized_keys ?