blob: 941863a7222bff4ed1679e138230004ef72f0dfa (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
/* Non-inetd mode enables protections like MAX_UNAUTH_PER_IP and
* MAX_AUTH_CLIENTS. */
#define INETD_MODE 0
/* ProteanOS will likely never have X11. */
#define DROPBEAR_X11FWD 0
/* Disable weak algorithms. Most if not all of these are removed from newer
* OpenSSH versions, but Dropbear leaves them enabled by default(!). */
#define DROPBEAR_3DES 0 /* Triple DES cipher */
#define DROPBEAR_ENABLE_CBC_MODE 0 /* CBC block cipher mode */
#define DROPBEAR_SHA1_HMAC 0 /* SHA-1 message hashing */
#define DROPBEAR_SHA1_96_HMAC 0 /* SHA-1 message hashing */
#define DROPBEAR_DSS 0 /* 1024-bit DSA keys */
#define DROPBEAR_DH_GROUP1 0 /* 1024-bit SHA-1 key exchange */
/* Send beautiful ASCII art from "/etc/motd". */
#define DO_MOTD 1
/* Disable server password authentication, requiring public keys instead. */
#define DROPBEAR_SVR_PASSWORD_AUTH 0
/* Disable use of an SFTP server (not provided by Dropbear). */
#define DROPBEAR_SFTPSERVER 0
|
