will trillich wrote: > i suppose this is a conundrum for the developers -- normally > security fixes are beamed back to potato in a hurry, but ssh > (version 1) has security troubles, and to fix them would > introduce a new package (ssh2) which is against 'stable' > policy... As far as I know fixed for all known ssh 1 security holes have been backported to the ssh in potato. -- see shy jo