Josh and Kurt talk about a new proposal from OpenSSH to add a timeout to penalize clients misbehaving. But this then brings up the typical security conversation of “if it’s not perfect we shouldn’t do it”. Trying new things is a good thing, even if something fails, we learn a lesson that we can use in the future. https://traffic.libsyn.com/opensourcesecuritypodcast/Episode_433_Should_OpenSSH_block_misbehaving_clients.mp3Show Notes OpenSSH introduces options to penalize undesirable beh...
