3 Things which might need doing:
5 - default private dbclient keys
7 - Make options.h generated from configure perhaps?
9 - Improved queueing of unauthed connections
11 - handle /etc/environment in AIX
13 - check that there aren't timing issues with valid/invalid user authentication
16 - Binding to different interfaces
20 - SSH_MSG_IGNORE sending to improve CBC security
21 - DH Group Exchange possibly, or just add group14 (whatever it's called today)
25 - Be able to use OpenSSH keys for the client? or at least have some form of
28 - Client agent forwarding
30 - Handle restrictions in ~/.ssh/authorized_keys ?