diff options
| author | Jameson Graef Rollins <jrollins@phys.columbia.edu> | 2008-06-18 23:53:09 -0400 |
|---|---|---|
| committer | Jameson Graef Rollins <jrollins@phys.columbia.edu> | 2008-06-18 23:53:09 -0400 |
| commit | 6ee67a218916f6f9c30dfe9787109017c11e8185 (patch) | |
| tree | 02201436a3a63a08173f28099c466de5d86286ba /doc | |
| parent | 48cb8a96becb8cf089b78f594c6b5264f1878e99 (diff) | |
Update TODO after merge.
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/TODO | 8 |
1 files changed, 2 insertions, 6 deletions
@@ -3,10 +3,10 @@ Next-Steps Monkeysphere Projects: Detail advantages of monkeysphere: detail the race conditions in ssh, and how the monkeysphere can help you reduce these threat vectors: - threat model reduction diagrams + threat model reduction diagrams. Determine how openssh handles multiple processes writing to - known_hosts file (atomic appends?) + known_hosts/authorized_keys files (lockfile, atomic appends?) Handle unknown hosts in such a way that they're not always removed from known_hosts file. Ask user to lsign the host key? @@ -61,16 +61,12 @@ File bug against ssh-keygen about how "-R" option removes comments File bug against ssh-keygen to see if we can get it to write to hash a known_hosts file to/from stdout/stdin. -Note all threat model reductions (with diagrams). - Add environment variables sections to man pages. Environment variable scoping. Move environment variable precedence before conf file. -Handle lockfiles when modifying known_hosts or authorized_keys. - When using ssh-proxycommand, if only host keys found are expired or revoked, then output loud warning with prompt, or fail hard. |