Mercurial > dropbear
comparison options.h @ 686:983a817f8e41 insecure-nocrypto
- Only request "none" cipher after auth has succeeded
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Thu, 17 May 2012 20:52:57 +0800 |
parents | 5af8993f7529 |
children | 91dd8328a3ff |
comparison
equal
deleted
inserted
replaced
685:5af8993f7529 | 686:983a817f8e41 |
---|---|
103 /* You can compile with no encryption if you want. In some circumstances | 103 /* You can compile with no encryption if you want. In some circumstances |
104 * this could be safe security-wise, though make sure you know what | 104 * this could be safe security-wise, though make sure you know what |
105 * you're doing. Anyone can see everything that goes over the wire, so | 105 * you're doing. Anyone can see everything that goes over the wire, so |
106 * the only safe auth method is public key. */ | 106 * the only safe auth method is public key. */ |
107 #define DROPBEAR_NONE_CIPHER | 107 #define DROPBEAR_NONE_CIPHER |
108 | |
109 /* Define this to allow password authentication even when no encryption | |
110 * is being used. This can be unsafe */ | |
111 #define ALLOW_NONE_PASSWORD_AUTH | |
112 | 108 |
113 /* Message Integrity - at least one required. | 109 /* Message Integrity - at least one required. |
114 * Protocol RFC requires sha1 and recommends sha1-96. | 110 * Protocol RFC requires sha1 and recommends sha1-96. |
115 * sha1-96 is of use for slow links as it has a smaller overhead. | 111 * sha1-96 is of use for slow links as it has a smaller overhead. |
116 * | 112 * |