diff options
| author | Matt Johnston <matt@ucc.asn.au> | 2005-01-02 17:08:27 +0000 |
|---|---|---|
| committer | Matt Johnston <matt@ucc.asn.au> | 2005-01-02 17:08:27 +0000 |
| commit | b5bd8591e7bc35980370ffa5dbe74d9b137e75c7 (patch) | |
| tree | 9c2aa4c8986d7bc729455cfb8275c28b58ccad78 /SMALL | |
| parent | e6c957caaa0ca262528adb282357efcaef8b25b1 (diff) | |
0.44 release changes
--HG--
extra : convert_revision : 47d6b5589a4eaf707ed1c3685d9ef49306af18d8
Diffstat (limited to 'SMALL')
| -rw-r--r-- | SMALL | 39 |
1 files changed, 25 insertions, 14 deletions
@@ -1,25 +1,36 @@ Tips for a small system: -The following are set in options.h +If you only want server functionality (for example), compile with + make PROGRAMS=dropbear +rather than just + make dropbear +so that client functionality in shared portions of Dropbear won't be included. +The same applies if you are compiling just a client. -- You can safely disable blowfish and twofish ciphers, and MD5 hmac, without - affecting interoperability +--- -- If you're compiling statically, you can turn off host lookups +The following are set in options.h: -- You can disable either password or public-key authentication, though note - that the IETF draft states that pubkey authentication is required. + - You can safely disable blowfish and twofish ciphers, and MD5 hmac, without + affecting interoperability -- Similarly with DSS and RSA, you can disable one of these if you know that - all clients will be able to support a particular one. The IETF draft - states that DSS is required, however you may prefer to use RSA. - DON'T disable either of these on systems where you aren't 100% sure about - who will be connecting and what clients they will be using. + - If you're compiling statically, you can turn off host lookups -- Disabling the MOTD code and SFTP-SERVER may save a small amount of codesize + - You can disable either password or public-key authentication, though note + that the IETF draft states that pubkey authentication is required. -- You can disable x11, tcp and agent forwarding as desired. None of these are - essential, although agent-forwarding is often useful even on firewall boxes. + - Similarly with DSS and RSA, you can disable one of these if you know that + all clients will be able to support a particular one. The IETF draft + states that DSS is required, however you may prefer to use RSA. + DON'T disable either of these on systems where you aren't 100% sure about + who will be connecting and what clients they will be using. + + - Disabling the MOTD code and SFTP-SERVER may save a small amount of codesize + + - You can disable x11, tcp and agent forwarding as desired. None of these are + essential, although agent-forwarding is often useful even on firewall boxes. + +--- If you are compiling statically, you may want to disable zlib, as it will use a few tens of kB of binary-size (./configure --disable-zlib). |