https://bugzilla.novell.com/show_bug.cgi?id=412441
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=412441#c1
Marcus Meissner changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Partner ID| |fate 301999
Resolution| |FEATURE
--- Comment #1 from Marcus Meissner 2008-07-28 00:40:53 MDT ---
Well, the patch is way too large to be added.
It also changes buffer handling and cryptography handling,
both very security sensitive areas. (I do not need to
point to the problem with Debian and its openssl modification.)
But let me just list this part where I see problems:
switch (c->number) {
+ case SSH_CIPHER_NONE:
And no comment why. So why would it be acceptable to have the None Cipher
available again?
So:
I suggest that the HPN guys work with the upstream OpenSSH project to get it
included. This might be hard, but in the end worth it.
Btw Redhat/Fedora does not seem to include it (checked SRPM), neither seems
Debian (checked on google).
But thank you for bringing this to our attention!
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.