Mercurial > dropbear
diff options.h @ 713:e22d5f5f6e37
Fix "-c none" so that it allows aes during authentication
Default for options.h shouldn't allow "none"
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Wed, 20 Mar 2013 23:52:49 +0800 |
| parents | 91dd8328a3ff |
| children | 3062da90dab8 b07eb3dc23ec |
line wrap: on
line diff
--- a/options.h Wed Mar 20 23:13:45 2013 +0800 +++ b/options.h Wed Mar 20 23:52:49 2013 +0800 @@ -104,7 +104,7 @@ * this could be safe security-wise, though make sure you know what * you're doing. Anyone can see everything that goes over the wire, so * the only safe auth method is public key. */ -#define DROPBEAR_NONE_CIPHER +/* #define DROPBEAR_NONE_CIPHER */ /* Message Integrity - at least one required. * Protocol RFC requires sha1 and recommends sha1-96. @@ -126,10 +126,8 @@ /* You can also disable integrity. Don't bother disabling this if you're * still using a cipher, it's relatively cheap. If you disable this it's dead - * simple to run arbitrary commands on the remote host. Beware. - * Note again, for the client you will have to disable other hashes above - * to use this. */ -#define DROPBEAR_NONE_INTEGRITY + * simple to run arbitrary commands on the remote host. Beware. */ +/* #define DROPBEAR_NONE_INTEGRITY */ /* Hostkey/public key algorithms - at least one required, these are used * for hostkey as well as for verifying signatures with pubkey auth.