openssh-portable/TODO

100 lines
3.1 KiB
Plaintext
Raw Normal View History

2003-05-18 13:44:07 +02:00
Documentation:
- Update the docs
- Update README
- Update INSTALL
- Merge INSTALL & README.privsep
- Install FAQ?
- General FAQ on S/Key, TIS, RSA, RSA2, DSA, etc and suggestions on when it
would be best to use them.
2003-05-18 13:44:07 +02:00
- Create a Documentation/ directory?
Programming:
2003-05-18 13:44:07 +02:00
- Grep for 'XXX' comments and fix
2001-03-21 01:12:55 +01:00
- Link order is incorrect for some systems using Kerberos 4 and AFS. Result
is multiple inclusion of DES symbols. Holger Trapp
<holger.trapp@hrz.tu-chemnitz.de> reports that changing the configure
generated link order from:
-lresolv -lkrb -lz -lnsl -lutil -lkafs -lkrb -ldes -lcrypto
to:
-lresolv -lkrb -lz -lnsl -lutil -lcrypto -lkafs -lkrb -ldes
fixing the problem.
2001-03-21 01:12:55 +01:00
2001-02-08 00:47:43 +01:00
- Write a test program that calls stat() to search for EGD/PRNGd socket
rather than use the (non-portable) "test -S".
2001-02-08 00:47:43 +01:00
- More platforms for for setproctitle() emulation (testing needed)
2001-03-05 13:33:24 +01:00
- Handle changing passwords for the non-PAM expired password case
- Improve PAM support (a pam_lastlog module will cause sshd to exit)
and maybe support alternate forms of authentications like OPIE via
pam?
2003-05-18 13:44:07 +02:00
- Improve PAM ChallengeResponseAuthentication
- Informational messages
- chauthtok
2001-03-05 13:33:24 +01:00
- Use different PAM service name for kbdint vs regular auth (suggest from
Solar Designer)
- Ability to select which ChallengeResponseAuthentications may be used
and order to try them in e.g. "ChallengeResponseAuthentication skey, pam"
- Complete Tru64 SIA support
2001-09-25 05:01:49 +02:00
- It looks like we could merge it into the password auth code to cut down
on diff size. Maybe PAM password auth too?
- Finish integrating kernel-level auditing code for IRIX and SOLARIS
(Gilbert.r.loomis@saic.com)
2001-03-19 15:58:47 +01:00
- 64-bit builds on HP-UX 11.X (stevesk@pobox.com):
- utmp/wtmp get corrupted (something in loginrec?)
- can't build with PAM (no 64-bit libpam yet)
Clean up configure/makefiles:
- Clean up configure.ac - There are a few double #defined variables
2001-03-05 13:33:24 +01:00
left to do. HAVE_LOGIN is one of them. Consider NOT looking for
information in wtmpx or utmpx or any of that stuff if it's not detected
from the start
2003-05-18 13:44:07 +02:00
- Fails to compile when cross compile. (vinschen@redhat.com)
- Replace the whole u_intXX_t evilness in acconfig.h with something better???
2003-01-13 00:00:34 +01:00
- Do it in configure.ac
- Consider splitting the u_intXX_t test for sys/bitype.h into seperate test
to allow people to (right/wrongfully) link against Bind directly.
2002-01-22 12:26:20 +01:00
- Consider splitting configure.ac into seperate files which do logically
similar tests. E.g move all the type detection stuff into one file,
2002-01-22 12:26:20 +01:00
entropy related stuff into another.
Packaging:
- Solaris: Update packaging scripts and build new sysv startup scripts
2001-03-05 13:33:24 +01:00
Ideally the package metadata should be generated by autoconf.
(gilbert.r.loomis@saic.com)
2001-03-19 15:58:47 +01:00
- HP-UX: Provide DEPOT package scripts.
(gilbert.r.loomis@saic.com)
PrivSep Issues:
- mmap() issues.
2002-06-25 16:14:30 +02:00
+ /dev/zero solution (Solaris)
+ No/broken MAP_ANON (Irix)
+ broken /dev/zero parse (Linux)
- PAM
+ See above PAM notes
- AIX
2003-06-11 15:56:41 +02:00
+ usrinfo() does not set TTY, but only required for legacy systems. Works
with PrivSep.
- OSF
+ SIA is broken
2002-06-25 16:01:55 +02:00
- Cygwin
+ Privsep for Pre-auth only (no fd passing)
$Id: TODO,v 1.56 2003/11/21 12:48:55 djm Exp $