Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 19 Apr 2012 07:05:55 +0200
From: PaweĊ‚ Hajdan, Jr. <phajdan.jr@...il.com>
To: owl-dev@...ts.openwall.com
Subject: Re: owl and openssh

On Thu, Apr 19, 2012 at 06:25, Solar Designer <solar@...nwall.com> wrote:

> The task is not trivial because we have patches,
> some of which will need to remain in the updated package (e.g., the key
> blacklisting).  The updated package may also need to be re-tested for a
> variety of potential issues, such as timing leaks allowing for easy
> username probing (an issue that we previously patched, but that might
> not have been addressed upstream).
>

Just jumping in while I'm still subscribed. :)

Isn't upstream interested in those owl patches? Have they been submitted
and rejected?

[ CONTENT OF TYPE text/html SKIPPED ]

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ