Git
/
ssh-audit
mirror of https://github.com/jtesta/ssh-audit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Page: Dropbear 2022.83
Pages
ArubaOS Switch (AOS S) 16.11 Dropbear 2022.83 Fortinet FortiOS FreeBSD OpenSSH Hardening Guide ‐ FreeBSD Blog FreeBSD Home Mikrotik RouterOS OPNsense 20.7 and newer Proxmox VE 7.3 6 SSH Hardening Guides Index Synology DSM Ubuntu 22.04 LTS Client Linux Mint 21 Client Void Linux Windows 11 macOS 13 (Ventura) & 14 (Sonoma)
2 Dropbear 2022.83
Mathieu Simon edited this page 2023-06-07 08:45:09 +02:00

As per the (unconfirmed) report in https://github.com/jtesta/ssh-audit/issues/159, the following steps may be used to harden Dropbear:

The current release of dropbear can be hardened by building it adding the following three lines to localoptions.h:

#define DROPBEAR_RSA_SHA1 0
#define DROPBEAR_DH_GROUP14_SHA1 0
#define DROPBEAR_SHA1_HMAC 0

Reference: https://github.com/mkj/dropbear/issues/138