summaryrefslogtreecommitdiffhomepage
path: root/options.h
AgeCommit message (Collapse)Author
2015-02-24DROPBEAR_ prefix for include guards to avoid collisionsThorsten Horstmann
2015-02-10Tighten validation of DH values. Odds of x==0 being generated areMatt Johnston
improbable, roughly 2**-1023 Regression in 0.49
2015-01-28Disable non-delayed zlib for serverMatt Johnston
2015-01-24Default client key path ~/.ssh/id_dropbearMatt Johnston
2015-01-23Add config option to disable cbc. Disable twofish by defaultMatt Johnston
2015-01-13Enable sha2 HMACs by default, they're required for ecdsa alreadyMatt Johnston
2014-08-01use xauth in /usr/binMike Frysinger
Since the x.org rework, X has been installed into standard paths and not its own random prefixes. I think it's time we update the default paths accordingly.
2014-07-09Make -K keepalive behave like OpenSSH's ServerAliveIntervalMatt Johnston
2014-02-19CHANGES for 2014.63Matt Johnston
2014-01-17DROPBEAR_CLI_AUTH_IMMEDIATE fixed, now enabled by defaultMatt Johnston
2013-11-14use oldstyle commentsMatt Johnston
2013-11-09comments, turn off debugging optionsMatt Johnston
--HG-- branch : ecc
2013-11-09- Make curve25519 work after fixing a typo, interoperates with OpenSSHMatt Johnston
- comment on ecc binary size effects --HG-- branch : ecc
2013-11-08MergeMatt Johnston
--HG-- branch : ecc
2013-11-08curve25519Matt Johnston
--HG-- branch : ecc
2013-11-07Add '-R' for delayed hostkey optionMatt Johnston
--HG-- branch : keyondemand
2013-11-07refactor key generation, make it generate as required.Matt Johnston
Needs UI in server command line options --HG-- branch : keyondemand
2013-05-21Enable SMALL_CODE by defaultMatt Johnston
--HG-- branch : ecc
2013-05-21merge in HEADMatt Johnston
--HG-- branch : ecc
2013-05-03ecdsa is workingMatt Johnston
--HG-- branch : ecc
2013-04-18Don't enable CLI_IMMEDIATE_AUTH by default, it breaks blank password loginsMatt Johnston
2013-04-09start on ecdsa keysMatt Johnston
--HG-- branch : ecc
2013-04-07ecc kind of works, needs fixing/testingMatt Johnston
--HG-- branch : ecc
2013-04-03Fix a few options and headersMatt Johnston
2013-03-29Add kexguess2 behaviourMatt Johnston
--HG-- branch : kexguess
2013-03-26refactor kexdh code a bit, start working on ecdh etcMatt Johnston
--HG-- branch : ecc
2013-03-20Fix "-c none" so that it allows aes during authenticationMatt Johnston
Default for options.h shouldn't allow "none"
2013-03-20Merge "none" cipher/MAC branch. Also adds sha256 and sha512Matt Johnston
2013-02-23DSS_PROTOK is not necessary now that private keys are includedMatt Johnston
in the random generation input
2013-02-12Allow configuring "allow blank password option" at runtimePaul Eggleton
Changes this from a compile-time switch to a command-line option. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>
2012-06-29Improve RNG seeding.Matt Johnston
Try to read from /dev/urandom multiple times, take input from extra sources, and use /dev/random when generating private keys
2012-05-17- Only request "none" cipher after auth has succeededMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-17Add ALLOW_NONE_PASSWORD_AUTH optionMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-17Merge in "-m"/"-c" codeMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-17ENABLE_USER_ALGO_LIST should work for the clientMatt Johnston
2012-05-17Add rough support for choosing ciphers/hashes with "-c" or "-m"Matt Johnston
2012-05-16Update insecure-nocrypto to current headMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-16Disable SHA256 and SHA512 by default in options.hMatt Johnston
--HG-- branch : sha2
2012-05-10- Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to beMatt Johnston
getting keyed incorrectly --HG-- branch : sha2
2012-05-09Fix empty password immediate loginMatt Johnston
2012-04-12Improve comment about sha1-96Matt Johnston
2011-10-26- Add ALLOW_BLANK_PASSWORD optionMatt Johnston
- Don't reject blank-password logins via public key --HG-- extra : convert_revision : 2d4bb3ecb013a7be47a7b470fc6b23e653a43dfb
2011-02-28merge of '8a608f0ed5e4b491dba4bf330e560636ec7376fd'Matt Johnston
and 'b31879a384d3bf8cbcbe2ed731d7d79d49799b1d' --HG-- extra : convert_revision : dfa0557e6070859d23ff096789f339e51a870177
2011-02-28- Don't allow setting memLevel since that doesn't work properlyMatt Johnston
- Better handling of the case where compressing makes the data larger (possibly only happens when memLevel is adjusted, but better to be safe) --HG-- extra : convert_revision : b31879a384d3bf8cbcbe2ed731d7d79d49799b1d
2011-02-28Compile fix for when both client and server agent forwarding is disabledMatt Johnston
--HG-- extra : convert_revision : 8a608f0ed5e4b491dba4bf330e560636ec7376fd
2011-02-24It happened to sonyMatt Johnston
--HG-- extra : convert_revision : c2d5690ca9ed85c7d75dd9cc2c150de50503aa3b
2009-09-08- Test for pam_fail_delay() function in configureMatt Johnston
- Recognise "username:" as a PAM prompt - Add some randomness to the auth-failure delay - Fix wrongly committed options.h/debug.h --HG-- extra : convert_revision : f242f0e66fb0ea5d3b374995d2f548d37dd8f3a3
2009-09-01Rearrange getaddrstring() etcMatt Johnston
--HG-- extra : convert_revision : 8a18c4a60aeaec085923d13d98fa0f93c506ceba
2009-08-26- set $SSH_ORIGINAL_COMMAND if a command is forced, and log itMatt Johnston
if LOG_COMMANDS is set --HG-- extra : convert_revision : d9e8aa0ecbe7607285fa4f96f0d6f9b1523719d8
2009-07-30propagate from branch 'au.asn.ucc.matt.dropbear.cli-agent' (head ↵Matt Johnston
eb0dae4b62e243ba37a897beb7ba81a4f637d8b3) to branch 'au.asn.ucc.matt.dropbear' (head ff0abce7b29e61630e3b09e5fc5820ae6e192808) --HG-- extra : convert_revision : 49e078caffa785d121cefaf05b64fecc71fecd63
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-21 15:33:26 +0000