]> git.ipfire.org Git - thirdparty/openwrt.git/commit
projects / thirdparty / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6126cfb) | patch
dropbear: adjust failsafe script
authorKonstantin Demin <rockdrilla@gmail.com>
Tue, 19 May 2026 13:38:13 +0000 (16:38 +0300)
committerHauke Mehrtens <hauke@hauke-m.de>
Wed, 27 May 2026 23:19:35 +0000 (01:19 +0200)
commit04ea7ca42f2addfc2b2b22aecba158e3ce1ef47a
tree05f8949a00b6077b8c7215cbc13af382cad27679tree | snapshot
parent6126cfbba987d8b503d329e5833339335cafa46acommit | diff
dropbear: adjust failsafe script

- try to detect supported (hostkey) algorithms; otherwise fallback to predefined list;
- remove size constraint for ECDSA: custom build may include only 384 or 521 bit curves;
- remove size constraint for RSA: default RSA key size is 2048 bits which is sufficient for SSH security recommendations, and previous value of 1024 bits is considered insecure.

Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
Link: https://github.com/openwrt/openwrt/pull/23217
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
package/network/services/dropbear/files/dropbear.failsafe diff | blob | blame | history
Mirror of https://github.com/openwrt/openwrt.git