W dniu 2014-03-31 19:35, Toralf Förster pisze: > On 03/31/2014 01:15 PM, Alex Xu wrote: >> On 31/03/14 03:36 AM, Dirkjan Ochtman wrote: >>> So, I'm interested... How widely used is the HPN patch set? Are there >>> any good indications that it doesn't negatively impact security? > >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=292932 >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693424 > >> https://lists.fedoraproject.org/pipermail/devel/2007-July/105570.html > >> https://aur.archlinux.org/packages/openssh-hpn/ > >> https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/162253 > > > Those bug reports are good arguments to have HPN as a feature in openssh. > > And most of them now many years old and still open. > > That's an argument to rethink if HPN should be activated quietly.
According to last problem with openssl and +tls-heartbeat I'd like to see less features enabled by default. USE="-*" isn't the best solution;) Marcin