Mercurial > dropbear
comparison options.h @ 686:983a817f8e41 insecure-nocrypto
- Only request "none" cipher after auth has succeeded
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Thu, 17 May 2012 20:52:57 +0800 |
| parents | 5af8993f7529 |
| children | 91dd8328a3ff |
comparison
equal
deleted
inserted
replaced
| 685:5af8993f7529 | 686:983a817f8e41 |
|---|---|
| 103 /* You can compile with no encryption if you want. In some circumstances | 103 /* You can compile with no encryption if you want. In some circumstances |
| 104 * this could be safe security-wise, though make sure you know what | 104 * this could be safe security-wise, though make sure you know what |
| 105 * you're doing. Anyone can see everything that goes over the wire, so | 105 * you're doing. Anyone can see everything that goes over the wire, so |
| 106 * the only safe auth method is public key. */ | 106 * the only safe auth method is public key. */ |
| 107 #define DROPBEAR_NONE_CIPHER | 107 #define DROPBEAR_NONE_CIPHER |
| 108 | |
| 109 /* Define this to allow password authentication even when no encryption | |
| 110 * is being used. This can be unsafe */ | |
| 111 #define ALLOW_NONE_PASSWORD_AUTH | |
| 112 | 108 |
| 113 /* Message Integrity - at least one required. | 109 /* Message Integrity - at least one required. |
| 114 * Protocol RFC requires sha1 and recommends sha1-96. | 110 * Protocol RFC requires sha1 and recommends sha1-96. |
| 115 * sha1-96 is of use for slow links as it has a smaller overhead. | 111 * sha1-96 is of use for slow links as it has a smaller overhead. |
| 116 * | 112 * |