hi solorin,
i agree... in that context openssh should be also considered.
the openssh-version of the repository is outdated and probably vulnerable:
tinycore-openssh.tcz:
2010/03/25 Fixed bug in init script
2010/04/04 Bumped to 5.4p1
Rebuilt against openssl-0.9.8(n)
2010/06/21 Bumped to 5.5p1
Rebuilt against openssl-0.9.8(o)
Current: 2011/02/18 Bumped to 5.8p1
Rebuilt against openssl-0.9.8(p)
Release History of openssh:
OpenSSH 6.0: April 22, 2012
OpenSSH 5.9: September 6, 2011
OpenSSH 5.8: February 4, 2011
essential packages should be so current as possible.
thank you for your contribution.