Mercurial > dropbear

view TODO @ 623:895fbe068f2c

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Fix case where "-K 1" would cause a SSH_MSG_IGNORE packet to be sent with the wrong encryption key ("bad packet length" symptom) while key exchange was happening.
author Matt Johnston <matt@ucc.asn.au>
date Tue, 07 Jun 2011 11:55:44 +0000
parents 0cbe8f6dbf9e
children
line wrap: on
line source

Current:

Things which might need doing:

- default private dbclient keys

- Make options.h generated from configure perhaps?

- handle /etc/environment in AIX

- check that there aren't timing issues with valid/invalid user authentication
  feedback.

- Binding to different interfaces

- CTR mode
- SSH_MSG_IGNORE sending to improve CBC security
- DH Group Exchange possibly, or just add group14 (whatever it's called today)

- fix scp.c for IRIX

- Be able to use OpenSSH keys for the client? or at least have some form of 
  encrypted keys.

- Client agent forwarding

- Handle restrictions in ~/.ssh/authorized_keys ?