From: "Brian L. Stuart" <blstuart@bellsouth.net>
To: Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net>
Subject: Re: [9fans] Plan9 Sources Repository
Date: Sat, 19 Jul 2014 16:19:47 -0700 [thread overview]
Message-ID: <1405811987.22941.YahooMailBasic@web184705.mail.ne1.yahoo.com> (raw)
In-Reply-To: <20140719180021.Horde.3AeyD8uom6rwQgD19QLi2A1@ssl.eumx.net>
> - having an SSH2 server (there is one in 9atom, but I didn't
> see it in the stock Plan9).
Geoff included the same ssh implementation as 9atom
has in /sys/src/cmd/ssh2 but with some code clean-up.
So the server code is there. I've been meaning to go
back an reconcile the two different versions, including
some bug fixes in the 9atom version, but my supply of
round tuits is small.
> Are you sure it doesn't have the Heartbleed?
For a number of reasons, yes, I am. The Plan 9 ssh v2
implementation is completely new and doesn't share any
code with either OpenSSH or OpenSSL. That decision
was made for a lot of reasons, one of which was to make
the system less susceptible to the script kiddies. While
I certainly don't have the hubris to suggest it is without
flaws, I'm pretty sure its flaws are different than those
of the mainstream implementations. So one is unlikely
to get very far using a mainstream exploit.
Having said all that, I would not recommend running an
SSH server on Plan 9, unless you have a really compelling
reason. With all due respect to those who developed
the protocol, its authentication model is not, in my opinion,
as solid as that of Plan 9. If you want to remotely "log into"
a Plan 9 system from a foreign system, use drawterm, or
cpu from a virtualized Plan 9 terminal.
BLS
next prev parent reply other threads:[~2014-07-19 23:19 UTC|newest]
Thread overview: 31+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-07-18 13:19 dante
2014-07-18 14:14 ` Aram Hăvărneanu
2014-07-18 14:18 ` cam
2014-07-18 14:36 ` erik quanstrom
2014-07-19 9:31 ` dante
2014-07-19 11:20 ` Riddler
2014-07-19 11:50 ` dante
2014-07-19 11:49 ` pmarin
2014-07-19 11:51 ` dante
2014-07-19 12:02 ` dante
2014-07-19 19:06 ` Anthony Sorace
2014-07-20 0:12 ` Brian L. Stuart
2014-07-20 7:33 ` dante
2014-07-19 12:03 ` tlaronde
2014-07-19 12:12 ` dante
2014-07-19 14:41 ` erik quanstrom
2014-07-19 15:06 ` dante
2014-07-19 15:11 ` Jacob Todd
2014-07-19 15:49 ` dante
2014-07-19 18:00 ` Kurt H Maier
2014-07-19 23:19 ` Brian L. Stuart [this message]
2014-07-19 18:17 ` erik quanstrom
2014-07-19 19:20 ` Christopher Nielsen
2014-07-19 20:13 ` Aram Hăvărneanu
2014-07-19 22:10 ` dante
2014-07-19 22:30 ` erik quanstrom
2014-07-20 7:33 ` dante
2014-07-19 22:54 ` Brian L. Stuart
2014-07-19 17:31 ` hiro
2014-07-19 17:48 ` dante
2014-07-19 15:03 ` Aram Hăvărneanu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1405811987.22941.YahooMailBasic@web184705.mail.ne1.yahoo.com \
--to=blstuart@bellsouth.net \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).