Joseph S. Testa II
2024-Jun-26 16:29 UTC
CISA et al: "Exploring Memory Safety in Critical Open Source Projects"
Has anyone done any initial research into how much effort it would take to port OpenSSH to Rust? If not, I might find that interesting to start. (Mind you, this would be just to get a handle on the project, not do the full porting work--unless it somehow turns out to be very easy.) - Joe -- Joseph S. Testa II Founder & Principal Security Consultant Positron Security
Peter Moody
2024-Jun-26 17:24 UTC
CISA et al: "Exploring Memory Safety in Critical Open Source Projects"
i'm not sure if anything has changed since https://marc.info/?l=openbsd-misc&m=151233345723889&w=2 On Wed, Jun 26, 2024 at 9:32?AM Joseph S. Testa II <jtesta at positronsecurity.com> wrote:> > Has anyone done any initial research into how much effort it would take > to port OpenSSH to Rust? If not, I might find that interesting to > start. (Mind you, this would be just to get a handle on the project, > not do the full porting work--unless it somehow turns out to be very > easy.) > > - Joe > > -- > Joseph S. Testa II > Founder & Principal Security Consultant > Positron Security > > _______________________________________________ > openssh-unix-dev mailing list > openssh-unix-dev at mindrot.org > https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
Martin Schröder
2024-Jun-26 17:39 UTC
CISA et al: "Exploring Memory Safety in Critical Open Source Projects"
Am Mi., 26. Juni 2024 um 18:35 Uhr schrieb Joseph S. Testa II <jtesta at positronsecurity.com>:> Has anyone done any initial research into how much effort it would take > to port OpenSSH to Rust? If not, I might find that interesting to > start. (Mind you, this would be just to get a handle on the project, > not do the full porting work--unless it somehow turns out to be very > easy.)A quick search for ssh + rust leads to https://nest.pijul.com/pijul/thrussh https://github.com/warp-tech/russh Best Martin
Possibly Parallel Threads
- CISA et al: "Exploring Memory Safety in Critical Open Source Projects"
- CISA et al: "Exploring Memory Safety in Critical Open Source Projects"
- [PATCH] sshsig: check hashalg before selecting the RSA signature algorithm
- OpenSSH 3.7.1
- [PATCH] sshsig: check hashalg before selecting the RSA signature algorithm