# HG changeset patch # User Matt Johnston # Date 1334239050 -28800 # Node ID 349fb2dda2dd208867407672e65dbf7463563640 # Parent a8367733e8cd84ae498dc005debc1ffd038048ba Improve comment about sha1-96 diff -r a8367733e8cd -r 349fb2dda2dd options.h --- a/options.h Mon Apr 09 21:29:41 2012 +0800 +++ b/options.h Thu Apr 12 21:57:30 2012 +0800 @@ -99,16 +99,17 @@ /* Message Integrity - at least one required. * Protocol RFC requires sha1 and recommends sha1-96. - * sha1-96 may be of use for slow links, as it has a smaller overhead. + * sha1-96 is of use for slow links as it has a smaller overhead. * - * Note: there's no point disabling sha1 to save space, since it's used - * for the random number generator and public-key cryptography anyway. + * There's no reason to disable sha1 or sha1-96 to save space since it's + * used for the random number generator and public-key cryptography anyway. * Disabling it here will just stop it from being used as the integrity portion * of the ssh protocol. * * These hashes are also used for public key fingerprints in logs. * If you disable MD5, Dropbear will fall back to SHA1 fingerprints, * which are not the standard form. */ + #define DROPBEAR_SHA1_HMAC #define DROPBEAR_SHA1_96_HMAC #define DROPBEAR_MD5_HMAC