comparison options.h @ 686:983a817f8e41 insecure-nocrypto

- Only request "none" cipher after auth has succeeded
author Matt Johnston <matt@ucc.asn.au>
date Thu, 17 May 2012 20:52:57 +0800
parents 5af8993f7529
children 91dd8328a3ff
comparison
equal deleted inserted replaced
685:5af8993f7529 686:983a817f8e41
103 /* You can compile with no encryption if you want. In some circumstances 103 /* You can compile with no encryption if you want. In some circumstances
104 * this could be safe security-wise, though make sure you know what 104 * this could be safe security-wise, though make sure you know what
105 * you're doing. Anyone can see everything that goes over the wire, so 105 * you're doing. Anyone can see everything that goes over the wire, so
106 * the only safe auth method is public key. */ 106 * the only safe auth method is public key. */
107 #define DROPBEAR_NONE_CIPHER 107 #define DROPBEAR_NONE_CIPHER
108
109 /* Define this to allow password authentication even when no encryption
110 * is being used. This can be unsafe */
111 #define ALLOW_NONE_PASSWORD_AUTH
112 108
113 /* Message Integrity - at least one required. 109 /* Message Integrity - at least one required.
114 * Protocol RFC requires sha1 and recommends sha1-96. 110 * Protocol RFC requires sha1 and recommends sha1-96.
115 * sha1-96 is of use for slow links as it has a smaller overhead. 111 * sha1-96 is of use for slow links as it has a smaller overhead.
116 * 112 *