summaryrefslogtreecommitdiffhomepage
path: root/runopts.h
AgeCommit message (Collapse)Author
2018-02-27add guard HAVE_GETGROUPLISTMatt Johnston
2018-02-26Fix restricted group code for BSDs, move to separate functionMatt Johnston
2018-02-20Added the -G option to allow logins only for users that are members of a ↵stellarpower
certain group. This allows finer control of an instance on who can and cannot login over a certain instance (e.g. password and not key). Needs double-checking and ensuring it meets platform requirements.
2018-02-16options: Complete the transition to numeric toggles (`#if')Michael Witten
For the sake of review, this commit alters only the code; the affiliated comments within the source files also need to be updated, but doing so now would obscure the operational changes that have been made here. * All on/off options have been switched to the numeric `#if' variant; that is the only way to make this `default_options.h.in' thing work in a reasonable manner. * There is now some very minor compile-time checking of the user's choice of options. * NO_FAST_EXPTMOD doesn't seem to be used, so it has been removed. * ENABLE_USER_ALGO_LIST was supposed to be renamed DROPBEAR_USER_ALGO_LIST, and this commit completes that work. * DROPBEAR_FUZZ seems to be a relatively new, as-yet undocumented option, which was added by the following commit: commit 6e0b539e9ca0b5628c6c5a3d118ad6a2e79e8039 Author: Matt Johnston <matt@ucc.asn.au> Date: Tue May 23 22:29:21 2017 +0800 split out checkpubkey_line() separately It has now been added to `sysoptions.h' and defined as `0' by default. * The configuration option `DROPBEAR_PASSWORD_ENV' is no longer listed in `default_options.h.in'; it is no longer meant to be set by the user, and is instead left to be defined in `sysoptions.h' (where it was already being defined) as merely the name of the environment variable in question: DROPBEAR_PASSWORD To enable or disable use of that environment variable, the user must now toggle `DROPBEAR_USE_DROPBEAR_PASSWORD'. * The sFTP support is now toggled by setting `DROPBEAR_SFTPSERVER', and the path of the sFTP server program is set independently through the usual SFTPSERVER_PATH.
2018-01-26bind to port as well with -bMatt Johnston
2018-01-26cli_bind_address_connecthouseofkodai
* replaces -b dummy option in dbclient to be similar with openssh -b option * useful in multi-wan connections
2017-06-25dropbear server: support -T max auth triesKevin Darbyshire-Bryant
Add support for '-T n' for a run-time specification for maximum number of authentication attempts where 'n' is between 1 and compile time option MAX_AUTH_TRIES. A default number of tries can be specified at compile time using 'DEFAULT_AUTH_TRIES' which itself defaults to MAX_AUTH_TRIES for backwards compatibility. Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
2016-05-04Convert #ifdef to #if, other build changesMatt Johnston
2016-04-12Add -c <command> option to force a specific commandJeremy Kerr
This change adds a -c option to dropbear, to force the session to use a specific command, in a similar fashion to OpenSSH's ForceCommand configuration option. This is useful to provide a simple fixed service over ssh, without requiring an authorized key file for the per-key forced_command option. This setting takes precedence over the channel session's provided command, and the per-key forced_command setting. Signed-off-by: Jeremy Kerr <jk@ozlabs.org>
2016-03-16fix empty C prototypesFrancois Perrad
2015-12-15Moved usingsyslog from svr_runopts to runopts.Konstantin Tokarev
2015-12-15Merge pull request #16 from annulen/openssh_optionsMatt Johnston
Implemented ExitOnForwardFailure option for local and remote forwarding.
2015-12-02ports and addresses must be malloced to avoid segfault on exitMatt Johnston
2015-11-30Implemented ExitOnForwardFailure option for local and remote forwarding.Konstantin Tokarev
2015-11-27Fixed build when ENABLE_CLI_REMOTETCPFWD is the only allowed TCP forwarding.Konstantin Tokarev
2015-02-24DROPBEAR_ prefix for include guards to avoid collisionsThorsten Horstmann
2015-01-28Disable non-delayed zlib for serverMatt Johnston
2014-07-27- Don't use multichar constants since recent gcc complainsMatt Johnston
- Add release script - Simplify print_version
2014-07-27Add '-V' for versionMatt Johnston
-h should exit with success Update manpages
2014-07-09Make -K keepalive behave like OpenSSH's ServerAliveIntervalMatt Johnston
2013-11-07Add '-R' for delayed hostkey optionMatt Johnston
--HG-- branch : keyondemand
2013-11-01Fix specifying a keysize for key generation, fix key name argumentsMatt Johnston
--HG-- branch : ecc
2013-05-21merge in HEADMatt Johnston
--HG-- branch : ecc
2013-05-03ecdsa is workingMatt Johnston
--HG-- branch : ecc
2013-04-14-y -y to disable hostkey checkingMatt Johnston
fix missing trailing space when passing arguments for multihop mode From Hans Harder
2013-02-12Allow configuring "allow blank password option" at runtimePaul Eggleton
Changes this from a compile-time switch to a command-line option. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>
2012-05-17Add rough support for choosing ciphers/hashes with "-c" or "-m"Matt Johnston
2009-09-11- Disable compression for non-final multihopsMatt Johnston
--HG-- extra : convert_revision : c507a2aacb9e0db4c0266891b8915c614e32857e
2009-09-01Rearrange getaddrstring() etcMatt Johnston
--HG-- extra : convert_revision : 8a18c4a60aeaec085923d13d98fa0f93c506ceba
2009-07-06- Client auth using an agent's key works. Still need to implement clientMatt Johnston
agent forwarding. --HG-- branch : agent-client extra : convert_revision : 276cf5e82276b6c879d246ba64739ec6868f5150
2009-07-06New standard linked list to use, rather than adhoc SignKeyList or TCPFwdListMatt Johnston
--HG-- branch : agent-client extra : convert_revision : 5465e639cc3f5ee0c6c55f0de6e7b6d5a8769da3
2009-07-01propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵Matt Johnston
899a8851a5edf840b2f7925bcc26ffe99dcac54d) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 6bbab8364de17bd9ecb1dee5ffb796e48c0380d2) --HG-- branch : agent-client extra : convert_revision : d39a49137cc36b624768d4e79e564141dde8d355
2008-11-07Idle timeout patch from Farrell Aultman. Needs testing, unsure if serverMatt Johnston
code works --HG-- extra : convert_revision : ff66e05ae040561110af70114bf83f11ed528f05
2008-09-23propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵Matt Johnston
4fb35083f0f46ea667e7043e7d4314aecd3df46c) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 833d0adef6cdbf43ea75283524c665e70b0ee1ee) --HG-- branch : agent-client extra : convert_revision : 6bbab8364de17bd9ecb1dee5ffb796e48c0380d2
2008-09-23- Enable -s for specifying a subsystem (such as sftp)Matt Johnston
--HG-- extra : convert_revision : c7b916e6c522f16f06fe1bd52815ba13aa88b90b
2008-09-22Replace calls to strtoul() with a helper m_str_to_uint()Matt Johnston
--HG-- extra : convert_revision : 1f8643c5ba7fe789c120b503c396281ac45f9730
2008-09-17propagate from branch 'au.asn.ucc.matt.dropbear.dbclient-netcat-alike' (head ↵Matt Johnston
b02ba6628cf2095017c60d202ac630f231e6b553) to branch 'au.asn.ucc.matt.dropbear' (head 636506b73e973b004cc058b07e6f36a25ff902f8) --HG-- extra : convert_revision : eb8e95a8227df7802d79007d4dd89098759fa76b
2008-09-17Rework netcat-alike to be a proper mode, with -B argument.Matt Johnston
--HG-- branch : dbclient-netcat-alike extra : convert_revision : b02ba6628cf2095017c60d202ac630f231e6b553
2008-09-15- "-J 'nc localhost 22'" kind of works, needs fixing hostkeys, ptys etc.Matt Johnston
--HG-- extra : convert_revision : 45069dd007ebf414330e0a7abf4fb7e0727049c3
2008-09-15- Split main socket var into ses.sock_in/ses.sock_out in preparationMatt Johnston
for -J proxy_cmd option (and some prelim options for that) --HG-- extra : convert_revision : 47cdea9a7d66c553c6f5eec43b899821939d4e4c
2007-08-16propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵Matt Johnston
8a7db1e2fdc5636abb338adb636babc32f465739) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head d82c25da2f7e4fb6da510d806c64344e80bb270d) --HG-- branch : agent-client extra : convert_revision : 78d02301ae8310efa2639f15da0ea62dea110e4b
2007-08-08- Add -K keepalive flag for dropbear and dbclientMatt Johnston
- Try to reduce the frequency of select() timeouts - Add a max receive window size of 1MB --HG-- extra : convert_revision : 9aa22036cb511cddb35fbc0e09ad05acb39b64d1
2007-07-25Add -W <windowsize> argument and document it.Matt Johnston
--HG-- extra : convert_revision : 98d4c0f15480bf749c451034cbc565d7e9d3b8dc
2007-02-22merge of 'a9b0496634cdd25647b65e585cc3240f3fa699ee'Matt Johnston
and 'c22be8b8f570b48e9662dac32c7b3e7148a42206' --HG-- extra : convert_revision : 066f6aef2791d54b9ec6a0c3033fd28fa946251f
2007-02-22Add -p [address:]port option for binding to addresses, patch fromMatt Johnston
Max-Gerd Retzlaff --HG-- extra : convert_revision : a9b0496634cdd25647b65e585cc3240f3fa699ee
2007-02-11Add '-y' option to dbclient to accept the host key without checkingMatt Johnston
- patch from Luciano Miguel Ferreira Rocha. --HG-- extra : convert_revision : 924b731b50d4147eed8e9382c98a2573259a6cad
2006-06-07add -f background option to dbclientMatt Johnston
--HG-- extra : convert_revision : 5ef61c30c0a634ac0da22a8c694ce235690e8170
2006-06-07Add -N "no remote command" dbclient option.Matt Johnston
Document -N in dbclient.1 and -P in dropbear.8 --HG-- extra : convert_revision : 7cada79bf8f61e09a72e5d492170bd10ab0acee3
2006-06-07Add -P pidfile patch from Swen SchilligMatt Johnston
--HG-- extra : convert_revision : 2dd1bf9162d8fc4c14b33c5b3c6ca3cbe2ecd587
2006-03-21propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵Matt Johnston
0501e6f661b5415eb76f3b312d183c3adfbfb712) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 01038174ec27245b51bd43a66c01ad930880f67b) --HG-- branch : agent-client extra : convert_revision : 12b2f59db65e7339d340e95ac67d6d9ddb193c2b
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-23 22:47:26 +0000