Mercurial > dropbear
diff default_options.h @ 1922:70f05f7d4d11
Default options comments, ignore localoptions.h
Also trim whitespaces.
Signed-off-by: Begley Brothers Inc <[email protected]>
author | Begley Brothers Inc <begleybrothers@gmail.com> |
---|---|
date | Thu, 09 Jul 2020 17:51:07 +1000 |
parents | 284c3837891c |
children | 667937351c31 |
line wrap: on
line diff
--- a/default_options.h Thu Jul 09 17:47:58 2020 +1000 +++ b/default_options.h Thu Jul 09 17:51:07 2020 +1000 @@ -6,7 +6,7 @@ default_options.h documents compile-time options, and provides default values. Local customisation should be added to localoptions.h which is -used if it exists in the build directory. Options defined there will override +used if it exists in the build directory. Options defined there will override any options in this file. Options can also be defined with -DDROPBEAR_XXX=[0,1] in Makefile CFLAGS @@ -78,7 +78,7 @@ /* Note: Both DROPBEAR_CLI_PROXYCMD and DROPBEAR_CLI_NETCAT must be set to * allow multihop dbclient connections */ -/* Allow using -J <proxycommand> to run the connection through a +/* Allow using -J <proxycommand> to run the connection through a pipe to a program, rather the normal TCP connection */ #define DROPBEAR_CLI_PROXYCMD 1 @@ -92,7 +92,7 @@ /* Encryption - at least one required. * AES128 should be enabled, some very old implementations might only * support 3DES. - * Including both AES keysize variants (128 and 256) will result in + * Including both AES keysize variants (128 and 256) will result in * a minimal size increase */ #define DROPBEAR_AES128 1 #define DROPBEAR_AES256 1 @@ -127,17 +127,20 @@ /* Hostkey/public key algorithms - at least one required, these are used * for hostkey as well as for verifying signatures with pubkey auth. * Removing either of these won't save very much space. - * RSA is recommended + * RSA is recommended. * DSS may be necessary to connect to some systems though - is not recommended for new keys */ + * is not recommended for new keys. + * See: RSA_PRIV_FILENAME and DSS_PRIV_FILENAME */ #define DROPBEAR_RSA 1 #define DROPBEAR_DSS 1 /* ECDSA is significantly faster than RSA or DSS. Compiling in ECC * code (either ECDSA or ECDH) increases binary size - around 30kB - * on x86-64 */ + * on x86-64. + * See: ECDSA_PRIV_FILENAME */ #define DROPBEAR_ECDSA 1 /* Ed25519 is faster than ECDSA. Compiling in Ed25519 code increases - binary size - around 7,5kB on x86-64 */ + * binary size - around 7,5kB on x86-64. + * See: ED25519_PRIV_FILENAME */ #define DROPBEAR_ED25519 1 /* SK_ECDSA/SK_ED25519 allows u2f security keys for public key auth. * This is currently server-only. */ @@ -217,7 +220,8 @@ * You can't enable both PASSWORD and PAM. */ #define DROPBEAR_SVR_PAM_AUTH 0 -/* ~/.ssh/authorized_keys authentication */ +/* ~/.ssh/authorized_keys authentication. + * You must define DROPBEAR_SVR_PUBKEY_AUTH in order to use plugins. */ #define DROPBEAR_SVR_PUBKEY_AUTH 1 /* Whether to take public key options in @@ -289,7 +293,7 @@ /* If you want to enable running an sftp server (such as the one included with - * OpenSSH), set the path below and set DROPBEAR_SFTPSERVER. + * OpenSSH), set the path below and set DROPBEAR_SFTPSERVER. * The sftp-server program is not provided by Dropbear itself. * Homedir is prepended if path begins with ~ */