OpenSSH HPN
Kubilay Kocak
koobs at FreeBSD.org
Tue Nov 10 09:47:31 UTC 2015
On 10/11/2015 8:42 PM, Dag-Erling Smørgrav wrote:
> Some of you may have noticed that OpenSSH in base is lagging far behind
> the upstream code.
>
> The main reason for this is the burden of maintaining the HPN patches.
> They are extensive, very intrusive, and touch parts of the OpenSSH code
> that change significantly in every release. Since they are not
> regularly updated, I have to choose between trying to resolve the
> conflicts myself (hoping I don't break anything) or waiting for them to
> catch up and then figuring out how to apply the new version.
>
> Therefore, I would like to remove the HPN patches from base and refer
> anyone who really needs them to the openssh-portable port, which has
> them as a default option. I would also like to remove the NONE cipher
> patch, which is also available in the port (off by default, just like in
> base).
>
> DES
>
I for one, support our new consistent-with-upstream,
improved-productivity and lower-risk-for-regressions-in-base overlords.
./koobs
More information about the freebsd-security
mailing list