Authenticating to dropbear using ecdsa-sha2-nistp256
Rogan Dawes
rogan at dawes.za.net
Fri Nov 11 11:50:21 AWST 2022
On Fri, 11 Nov 2022 at 03:20, Matt Johnston <matt at ucc.asn.au> wrote:
> On Tue, Nov 08, 2022 at 04:57:40PM +0200, Rogan Dawes wrote:
> > The targets that I have available are OpenWrt 21.02.1 running Dropbear
> > v2020.81 and 22.03.0 running Dropbear v2022.82.
>
> Ah, OpenWRT doesn't include ecdsa support (for size
> reasons) - only remembered that now. You'll have to use rsa
> or ed25519 instead if possible.
>
> It's possible to rebuild their package with the DROPBEAR_ECC
> openwrt config option.
>
> Cheers,
> Matt
I was under the impression that the ssh protocol included a handshake step
where supported algorithms were exchanged, and keys that do not match are
eliminated?
I’ll check what that shows in the logs.
Thanks
Rogan
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/attachments/20221111/72be60e7/attachment.htm>
More information about the Dropbear
mailing list