Mercurial > dropbear
diff default_options.h @ 1544:d1a8a05216ff
make group1 client-only
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Mon, 26 Feb 2018 22:42:53 +0800 |
| parents | 940828026f28 |
| children | 0b991dec7ab9 bb8eaa26bc93 03df3b9f6048 |
line wrap: on
line diff
--- a/default_options.h Mon Feb 26 22:19:01 2018 +0800 +++ b/default_options.h Mon Feb 26 22:42:53 2018 +0800 @@ -149,12 +149,17 @@ * Small systems should generally include either curve25519 or ecdh for performance. * curve25519 is less widely supported but is faster */ -#define DROPBEAR_DH_GROUP1 0 #define DROPBEAR_DH_GROUP14_SHA1 1 #define DROPBEAR_DH_GROUP14_SHA256 1 #define DROPBEAR_DH_GROUP16 0 #define DROPBEAR_CURVE25519 1 #define DROPBEAR_ECDH 1 +#define DROPBEAR_DH_GROUP1 1 + +/* When group1 is enabled it will only be allowed by Dropbear client +not as a server, due to concerns over its strength. Set to 0 to allow +group1 in Dropbear server too */ +#define DROPBEAR_DH_GROUP1_CLIENTONLY 1 /* Control the memory/performance/compression tradeoff for zlib. * Set windowBits=8 for least memory usage, see your system's