Any chance this work can be upstreamed into mainline SSH? I'd love to have better performance for SSH, but I'm probably not going to install and remember to use this just for the few times it would be relevant.
harvie•2h ago
Also upstream is extremely well audited. That's a huge benefit i don't want to loose by using fork.
Bad_CRC•1h ago
this, I'm not going to start using a random ssh fork with modified ciphers.
Zambyte•5m ago
It may still be sensible if you only expose it to private networks.
Almondsetat•2h ago
OpenSSH is from the people at OpenBSD, which means performance improvements have to be carefully vetted against bugs, and, judging by the fact that they're still on fastfs and the lack of TRIM in 2025, that will not happen.
suprjami•52m ago
Unlikely. These patches have been carried out-of-tree for over a decade precisely because upstream OpenSSH won't accept them.
hsbauauvhabzb•24m ago
Depending on your hardware architecture and security needs, fiddling with ciphers in mainline might improve speed.
josephg•2h ago
harvie•2h ago
Bad_CRC•1h ago
Zambyte•5m ago
Almondsetat•2h ago
suprjami•52m ago
hsbauauvhabzb•24m ago