> Date: Fri, 13 Jun 2008 12:29:45 +0900 > From: Randy Bush <[EMAIL PROTECTED]> > Sender: [EMAIL PROTECTED] > > Ian Smith wrote: > > On Thu, 12 Jun 2008, Brooks Davis wrote: > > > On Thu, Jun 12, 2008 at 06:30:05PM -0700, Peter Losher wrote: > > > > Randy Bush wrote: > > > >> this has been a cause of great pain for a loooong time. > > > >> > > > >> http://www.psc.edu/networking/projects/hpn-ssh/ > > > >> > > > >> as openssh seems not to be fixing it (and i do not consider a 2mb > > fixed > > > >> buffer to be fixed, especially not from a 100mb link here in tokyo and > > > >> servers in the states, europe, and africa), perhaps i could convince > > > >> freebsd net folk to do so? > > > > > > > > FYI - HPN is already a build option in the openssh-portable port. > > > > > > I do think we should strongly consider adding the rest of it to the base. > > > > Presumably with suitable caveats re NONE CYPHER, NoneEnabled=no default? > > for sure!
Agreed. PSC had valid reasons to allow NONE. They just don't apply to most cases and are a a very bad idea for a default install. -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: [EMAIL PROTECTED] Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751
pgpTfu0qY2HvC.pgp
Description: PGP signature