search for: mindsec

...was one. Yes, openssh doesn't have its own copy of zlib source but it would still be helpful to have a statement, especially since it appears under protocol 2 that it's potentially exploitable before authentication. - Dave Dykstra ----- Forwarded message from Erik Parker <eparker at mindsec.com> ----- Mailing-List: contact secureshell-help at securityfocus.com; run by ezmlm List-Post: <mailto:secureshell at securityfocus.com> List-Help: <mailto:secureshell-help at securityfocus.com> List-Unsubscribe: <mailto:secureshell-unsubscribe at securityfocus.com> List-Subs...

Has anyone looked into a way to disable zlib from openssh or perhaps find another library that can easily be put in place? I did read the back logs of the list, and noticed it mentioned zlib is a fundlemental part of the system, and can not be removed.. For security sake, I wonder if there is anyway around having zlib installed. -Erik