> On 1/18/26 8:48 AM, Ben Kallus wrote: >> Debian openssh-server package applies 29 patches to sshd > > Why? Is openssh-server incomplete? Have bugs? Are they adding extra > features?
At my previous position, I had to comply with a few really difficult security standards. One of the things was no permanent keys, no passwords, no network connectivity, no ability to do periodic key replacement, with security access loging. I came up with a one time access key system, but I had to make some changes to sshd to gain access to process information/control only available in the sshd process pre-fork. I had a set of patches that I had to maintain. Its not that uncommon. > > -kb > > _______________________________________________ > Discuss mailing list > [email protected] > https://lists.blu.org/mailman/listinfo/discuss > _______________________________________________ Discuss mailing list [email protected] https://lists.blu.org/mailman/listinfo/discuss
