Dropbear test version 2013.61test with ECC

Roy Tam roytam at gmail.com
Fri Nov 15 17:21:35 WST 2013


2013/11/15 Roy Tam <roytam at gmail.com>:
> 2013/11/14 Matt Johnston <matt at ucc.asn.au>:
>> Hi all,
>>
>> Dropbear now has support for ECC which is significantly
>> faster at setting up connections on slow platforms. Since
>> it's a large patch I'm making a test release first.
>>
>> I've also added a "-R" mode to automatically generate
>> hostkeys on first connection - this is recommended on
>> embedded platforms which may take a while after boot before
>> a good /dev/urandom seed has been derived.
>>
>> Download from
>> https://matt.ucc.asn.au/dropbear/testing/dropbear-2013.61test.tar.bz2
>>
>> Cheers,
>> Matt
>>
>> 2013.61test - Thursday 14 November 2013
>>
>> - ECC (elliptic curve) support. Supports ECDSA hostkeys (requires new keys to
>>   be generated) and ECDH for setting up encryption keys (no intervention
>>   required). This is significantly faster.
>>
>> - curve25519-sha256 at libssh.org support for setting up encryption keys. This is
>>   another elliptic curve mode with less potential of NSA interference in
>>   algorithm parameters. curve25519-donna code thanks to Adam Langley
>>
>> - -R option to automatically generate hostkeys. This is recommended for
>>   embedded platforms since it allows the system random number device
>>   /dev/urandom a longer startup time to generate a secure seed before the
>>   hostkey is required.
>>
>> - Compile fixes for old vendor compilers like Tru64 from Daniel Richard G.
>
> dropbear on FreeBSD is broken?
>
> configure line: ./configure --prefix=/usr/local

Forget to mention that the FreeBSD version I'm using is 9.2-RELEASE.


More information about the Dropbear mailing list