===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/60.html,v
retrieving revision 1.65
retrieving revision 1.66
diff -c -r1.65 -r1.66
*** www/60.html 2016/08/17 16:45:41 1.65
--- www/60.html 2016/08/21 22:51:34 1.66
***************
*** 406,413 ****
a new chown promise that allows pledged programs to set
setugid attributes,
a stricter enforcement of the recvfd promise and
! chroot(2) is no longer allowed
! for pledged programs.
a number of
pledge(2)-related bugs
(missing promises, unintended changes of behavior, crashes) were fixed,
--- 406,413 ----
a new chown promise that allows pledged programs to set
setugid attributes,
a stricter enforcement of the recvfd promise and
! chroot(2) is no longer
! allowed for pledged programs.
a number of
pledge(2)-related bugs
(missing promises, unintended changes of behavior, crashes) were fixed,
***************
*** 497,503 ****
and only included for legacy compatibility.
ssh(1),
sshd(8):
! Improve ordering ordering of MAC verification for
Encrypt-then-MAC (EtM) mode transport MAC algorithms to
verify the MAC before decrypting any ciphertext. This removes the
possibility of timing differences leaking facts about the plaintext,
--- 497,503 ----
and only included for legacy compatibility.
ssh(1),
sshd(8):
! Improve ordering of MAC verification for
Encrypt-then-MAC (EtM) mode transport MAC algorithms to
verify the MAC before decrypting any ciphertext. This removes the
possibility of timing differences leaking facts about the plaintext,