On Thu, Mar 01, 2001 at 10:30:35AM -0700, Hubert Chan wrote: > > On the other hand, OpenSSH was created by the OpenBSD people, who are > famous for secure programming. >
And also for quick security fixes. They had a patch for sudo about 5 hours after the recent bug was discovered. It took a few days for a fixed .deb to make it to security.debian.org. But maybe that's the difference between an OS that's usually updated through source patches, and one that usually uses precompiled binaries. <[EMAIL PROTECTED]> PS OpenSSH DOES go through the peer review/audit process. And if you want to disable DSA keys, well you can do that too, just read the manpage.