OpenSSH_2.5.1p1 - RH 6.2
Damien Miller
djm at mindrot.org
Tue Feb 27 09:30:18 EST 2001
On Mon, 26 Feb 2001, Jim Knoble wrote:
> : I might put this in init_rng() so we get it without any more disruption.
>
> I'd rather see a warning rather than a fatal error.
I would prefer to fail utterly rather than run a suid root program with
suspect crypto code.
> This allows folks
> to use a hypothetical upwardly-compatible OpenSSL (if there ever is
> one) in the future without having to recompile the server.
heh - *every* version of SSLeay/OpenSSL has broken binary compatability
in some way. I do hope that they get it together in the future, but I
won't hold my breath (or suffer the stream of bugreports :)
-d
--
| Damien Miller <djm at mindrot.org> \ ``E-mail attachments are the poor man's
| http://www.mindrot.org / distributed filesystem'' - Dan Geer
More information about the openssh-unix-dev
mailing list