Bug#292932: openssh-server: both patches should be included
Package: openssh-server
Version: 1:4.1p1-6
Followup-For: Bug #292932
There shouldn't be any security issues with including at least
the performance patch to allow for scalable buffer sizes.
But it would be nice if the hpn11-none cipher patch could also
be included as there is probably good need of it by most people who use
scp. I'd even argue for documenting it officially as it seems pretty
obvious which situations call for its use (and which don't).
Just my two cents. I'm going to rebuild my local packages with
the patches at least. :) It would be nice to see all Debian users
benefit from these though.
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12.4
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Versions of packages openssh-server depends on:
ii adduser 3.67 Add and remove users and groups
ii debconf [debconf-2.0] 1.4.57 Debian configuration management sy
ii dpkg 1.13.10 Package maintenance system for Deb
ii libc6 2.3.5-3 GNU C Library: Shared libraries an
ii libpam-modules 0.76-23 Pluggable Authentication Modules f
ii libpam-runtime 0.76-23 Runtime support for the PAM librar
ii libpam0g 0.76-23 Pluggable Authentication Modules l
ii libselinux1 1.24-4 SELinux shared libraries
ii libssl0.9.7 0.9.7g-1 SSL shared libraries
ii libwrap0 7.6.dbs-8 Wietse Venema's TCP wrappers libra
ii openssh-client 1:4.1p1-6 Secure shell client, an rlogin/rsh
ii zlib1g 1:1.2.3-3 compression library - runtime
openssh-server recommends no packages.
-- debconf information excluded
Reply to: