summaryrefslogtreecommitdiffstats
path: root/rules/dropbear.in
blob: bedb748a90c11585e2cdf33e31c86c60c7097fd5 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
menuconfig DROPBEAR
        bool
	prompt "Dropbear SSH-Server "
	select ZLIB
	help
	  dropbear is a SSH 2 server and client designed
	  to be small enough to be used in small memory
	  environments, while still being functional and
 	  secure enough for general use.

	  It implements most required features of the
	  SSH 2 protocol, and other features such as X11
	  and authentication agent forwarding.

	  http://matt.ucc.asn.au/dropbear/dropbear.html

config DROPBEAR_DIS_ZLIB
	bool
	prompt "Don't include zlib support"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_OPENPTY
	bool
	prompt "Don't use openpty, use alternative method"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_SYSLOG
	bool
	prompt "Don't include syslog support"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_LASTLOG
	bool
	prompt "disable use of lastlog"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_UTMP
	bool
	prompt "disable use of utmp"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_UTMPX
	bool
	prompt "disable use of utmpx"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_WTMP
	bool
	prompt "disable use of wtmp"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_WTMPX
	bool
	prompt "disable use of wtmpx"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_LIBUTIL
	bool
	prompt "disable use of libutil"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_PUTUTLINE
	bool
	prompt "disable use of pututline"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_PUTUTXLINE
	bool
	prompt "disable use of pututxline"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail


comment features
	depends on DROPBEAR

config DROPBEAR_DIS_X11
	bool
	prompt "disable X11 Forwarding"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_TCP
	bool
	prompt "disable TCP Fowarding"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DIS_AGENT
	bool
	prompt "disable Authentication Agent Forwarding"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

comment "Encryption, at least one required --- RFC Draft requires 3DES"
	depends on DROPBEAR

config DROPBEAR_AES128
	bool
	prompt "AES 128"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_BLOWFISH
	bool
	prompt "Blowfish"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_TWOFISH128
	bool
	prompt "Twofish128"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_3DES
	bool
	prompt "3DES"
	default y
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

comment "Integrity, at least one required --- RFC Draft requires sha1-hmac"
	depends on DROPBEAR

config DROPBEAR_SHA1
	bool
	prompt "sha1"
	default y
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_MD5
	bool
	prompt "md5"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

comment "Hostkey/public key algorithms, at least one required --- SSH2 RFC Draft requires dss"
	depends on DROPBEAR

config DROPBEAR_RSA
	bool
	prompt "rsa"
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DSS
	bool
	prompt "dss"
	default y
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail


comment "Authentication types, at least one required --- RFC Draft requires pubkey auth"
	depends on DROPBEAR

config DROPBEAR_PASSWD
	bool
	prompt "password"
	default y
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_PUBKEY
	bool
	prompt "pubkey"
	default y
	depends on DROPBEAR
	help
	  FIXME: This item should be documented in detail

comment "installation options   ---"
	depends on DROPBEAR

config DROPBEAR_DROPBEAR
	bool
	prompt "Install dropbear SSH server"
	default y
	depends on DROPBEAR
	select DROPBEAR_DROPBEAR_KEY
	select DROPBEAR_RSA
	select DROPBEAR_DSS
	select BB_CONFIG_START_STOP_DAEMON	if BUSYBOX
	help
	  FIXME: This item should be documented in detail

config DROPBEAR_DROPBEAR_KEY
	bool
	prompt "Install dropbearkey"
	depends on DROPBEAR
	help
	  This programm is used to generate the host key(s).
	  Select this, if you want this program on your target platform.

config DROPBEAR_DROPBEAR_CONVERT
	bool
	prompt "Install dropbearconvert"
	depends on DROPBEAR
	help
	  With this utility you can convert ssh hostkeys from openssh to dropbear formt.
	  Select this, if you want this program on your target platform.

config DROPBEAR_SCP
	bool
	prompt	"Install dropbear's scp"
	depends on DROPBEAR
	help
	  This is dropbear's implementation of the scp utility.

comment "runtime options   ---"
	depends on DROPBEAR

config ROOTFS_ETC_INITD_DROPBEAR
	depends on DROPBEAR
	bool
	default y
	prompt "Install startup script"
	help
	  The /etc/init.d/dropbear script lets you control the dropbear daemon.

	choice
		prompt "Kind of startup script"
		depends on ROOTFS_ETC_INITD_DROPBEAR
		default ROOTFS_ETC_INITD_DROPBEAR_DEFAULT

		config ROOTFS_ETC_INITD_DROPBEAR_DEFAULT
			bool
			prompt "Use generic"
			help
			  Installs a generic /etc/init.d/dropbear startup script.
			  See <ptxdist-install>/generic/etc/init.d/dropbear

		config ROOTFS_ETC_INITD_DROPBEAR_USER
			bool
			prompt "User defined"
			help
			  This uses a user defined dropbear startup script. PTXdist
			  uses files projectroot/etc/init.d/dropbear in your local
			  project

	endchoice