[OE-core] [PATCH] dropbear: new feature: disable-weak-ciphers
Richard Purdie
richard.purdie at linuxfoundation.org
Fri Jun 21 09:21:56 UTC 2019
On Thu, 2019-06-20 at 16:29 -0500, Joseph Reynolds wrote:
> dropbear: new feature: disable-weak-ciphers
>
> Enhances dropbear with a new feature "disable-weak-ciphers", on by
> default.
> This feature disables all CBC, SHA1, and diffie-hellman group1
> ciphers
> in
> the dropbear ssh server and client.
>
> Disable this feature if you need to connect to the ssh server from
> older
> clients. Additional customization can be done with local_options.h
> as
> usual.
>
> Tested: On dropbear_2019.78.
>
> Upstream-Status: Inappropriate [configuration]
Unfortunately this patch has come through line wrapped. I did manage to
unwrap it and get it to apply, only to find the patch itself within the
patch was broken due to missing whitespace line endings.
Also, the Upstream-Status needs to go in the patch itself along with a
Signed-off-by in the patch.
Since I was most of the way there I've fixed this all up and queued it
in master-next for testing.
Cheers,
Richard
More information about the Openembedded-core
mailing list