From: | "Marcin Mirosław" <marcin@×××××.pl> | ||
---|---|---|---|
To: | gentoo-dev@l.g.o | ||
Subject: | Re: [gentoo-dev] Why is IUSE=hpn mandatory in openssh ? | ||
Date: | Tue, 08 Apr 2014 18:35:08 | ||
Message-Id: | 53444147.3090106@mejor.pl | ||
In Reply to: | Re: [gentoo-dev] Why is IUSE=hpn mandatory in openssh ? by "Toralf Förster" |
1 | W dniu 2014-03-31 19:35, Toralf Förster pisze: |
2 | > On 03/31/2014 01:15 PM, Alex Xu wrote: |
3 | >> On 31/03/14 03:36 AM, Dirkjan Ochtman wrote: |
4 | >>> So, I'm interested... How widely used is the HPN patch set? Are there |
5 | >>> any good indications that it doesn't negatively impact security? |
6 | > |
7 | >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=292932 |
8 | >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693424 |
9 | > |
10 | >> https://lists.fedoraproject.org/pipermail/devel/2007-July/105570.html |
11 | > |
12 | >> https://aur.archlinux.org/packages/openssh-hpn/ |
13 | > |
14 | >> https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/162253 |
15 | > |
16 | > |
17 | > Those bug reports are good arguments to have HPN as a feature in openssh. |
18 | > |
19 | > And most of them now many years old and still open. |
20 | > |
21 | > That's an argument to rethink if HPN should be activated quietly. |
22 | |
23 | According to last problem with openssl and +tls-heartbeat I'd like to |
24 | see less features enabled by default. USE="-*" isn't the best solution;) |
25 | |
26 | Marcin |
Subject | Author |
---|---|
Re: [gentoo-dev] Why is IUSE=hpn mandatory in openssh ? | Mike Gilbert <floppym@g.o> |