Dropbear 2016.73

Hans Harder hans at atbas.org
Sun Mar 20 18:05:48 AWST 2016


Hi Matt,

noticed that in sysoptions.h this is added  at line 130

/* These are disabled in Dropbear 2016.73 by default since the spec
   draft-ietf-curdle-ssh-kex-sha2-02 is under development. */
#define DROPBEAR_DH_GROUP14_256 0
#define DROPBEAR_DH_GROUP16 0


Should that not be in options.h  underneath  line 174

/* Group14 (2048 bit) is recommended. Group1 is less secure (1024 bit)
though
   is the only option for interoperability with some older SSH programs */
#define DROPBEAR_DH_GROUP1 1
#define DROPBEAR_DH_GROUP14 1


Hans






On Fri, Mar 18, 2016 at 4:52 PM, Matt Johnston <matt at ucc.asn.au> wrote:

> Hi all,
>
> Dropbear 2016.73 is released. It has a few new features and
> other small improvements.
>
> Download at https://matt.ucc.asn.au/dropbear/dropbear.html
>
> Cheers,
> Matt
>
> 2016.73 - 18 March 2016
>
> - Support syslog in dbclient, option -o usesyslog=yes. Patch from
> Konstantin Tokarev
>
> - Kill a proxycommand when dbclient exits, patch from Konstantin Tokarev
>
> - Option to exit when a TCP forward fails, patch from Konstantin Tokarev
>
> - New "-o" option parsing from Konstantin Tokarev. This allows handling
> some extra options
>   in the style of OpenSSH, though implementing all OpenSSH options is not
> planned.
>
> - Fix crash when fallback initshells() is used, reported by Michael Nowak
> and Mike Tzou
>
> - Allow specifying commands eg "dropbearmulti dbclient ..." instead of
> symlinks
>
> - Various cleanups for issues found by a lint tool, patch from Francois
> Perrad
>
> - Fix tab indent consistency, patch from Francois Perrad
>
> - Fix issues found by cppcheck, reported by Mike Tzou
>
> - Use system memset_s() or explicit_bzero() if available to clear memory.
> Also make
>   libtomcrypt/libtommath routines use that (or Dropbear's own m_burn()).
>
> - Prevent scp failing when the local user doesn't exist. Based on patch
> from Michael Witten.
>
> - Improved Travis CI test running, thanks to Mike Tzou
>
> - Improve some code that was flagged by Coverity and Fortify Static Code
> Analyzer
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/attachments/20160320/2f3f578c/attachment.htm 


More information about the Dropbear mailing list