On Wed, Jun 24, 2015 at 04:23:19AM +0200, Reimar Döffinger wrote: > 2) when read fails, zero the buffer (so at least there are only extra 0s, not > 'random' data)
That is done in OpenSSH CVS version at least. This seems to have changed in June 2014.
On Wed, Jun 24, 2015 at 04:23:19AM +0200, Reimar Döffinger wrote: > 2) when read fails, zero the buffer (so at least there are only extra 0s, not > 'random' data)
That is done in OpenSSH CVS version at least. This seems to have changed in June 2014.