itojun@iijlab.net wrote:
> 	i guess the problem is not how many users are using s/key, but how many
> 	of installed systems that has it turned on (most of the openssh
> 	installation shipped with it turned on).

Yes, I realize virtually all OpenSSH users were vulnerable.
However, how could not publishing valid workaround help with that?

Jaromir
-- 
Jaromir Dolecek <jdolecek@NetBSD.org> http://www.NetBSD.org/Ports/i386/ps2.html
-=- We should be mindful of the potential goal, but as the tantric    -=-
-=- Buddhist masters say, ``You may notice during meditation that you -=-
-=- sometimes levitate or glow.   Do not let this distract you.''     -=-