/* Non-inetd mode enables protections like MAX_UNAUTH_PER_IP and
 * MAX_AUTH_CLIENTS. */
#define INETD_MODE 0

/* ProteanOS will likely never have X11. */
#define DROPBEAR_X11FWD 0

/* Disable weak algorithms.  Most if not all of these are removed from newer
 * OpenSSH versions, but Dropbear leaves them enabled by default(!). */
#define DROPBEAR_3DES 0             /* Triple DES cipher */
#define DROPBEAR_ENABLE_CBC_MODE 0  /* CBC block cipher mode */
#define DROPBEAR_SHA1_HMAC 0        /* SHA-1 message hashing */
#define DROPBEAR_SHA1_96_HMAC 0     /* SHA-1 message hashing */
#define DROPBEAR_DSS 0              /* 1024-bit DSA keys */
#define DROPBEAR_DH_GROUP1 0        /* 1024-bit SHA-1 key exchange */

/* Send beautiful ASCII art from "/etc/motd". */
#define DO_MOTD 1

/* Disable server password authentication, requiring public keys instead. */
#define DROPBEAR_SVR_PASSWORD_AUTH 0

/* Disable use of an SFTP server (not provided by Dropbear). */
#define DROPBEAR_SFTPSERVER 0