On 11/11/2015 1:23 AM, Dag-Erling Sm?rgrav wrote:> Bryan Drewery <bdrewery at FreeBSD.org> writes:
>> Actually I am missing the client-side VersionAddendum support (ssh.c).
I
>> only have server-side (sshd.c). This is just due to lack of motivation
>> to import the changes.
>
> Pretty sure I sent Damien the patch a few years ago... There was also a
> bug in the server-side code (IIRC, one place where it printed only the
> hardcoded version instead of the variable string). I'll try again.
>
By the way, I may have come off wrong. I'm willing to do the work to
update the base version and put it out for review if you would like.
Another thing that I did with the port was restore the tcpwrapper
support that upstream removed. Again, if we decide it is not worth
keeping in base I will remove it as default in the port.
I honestly don't have a strong opinion on keeping or removing HPN. It is
afterall available in the port and I intend to keep it as an option
there. The question is just what the default is.
I prefer to keep the port close to the base version by default options.
I never liked the idea of having 2 different things in the ecosystem
that behave differently, from OpenSSL to OpenSSH, etc.
--
Regards,
Bryan Drewery
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL:
<http://lists.freebsd.org/pipermail/freebsd-security/attachments/20151111/243e815c/attachment.bin>