minerva/Ports/dropbear/patches/0001-Disable-some-default-options.patch at 1d53ae1d6f7d460e411d0c3e9ba48f0e7b6160b9

ErisCyan / minerva

Find file

Newer

Older

minerva / Ports / dropbear / patches / 0001-Disable-some-default-options.patch

minerva on 13 Jul 1 KB Initial commit

Raw Blame History

From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
From: Patrick Meyer <git@the-space.agency>
Date: Thu, 28 Apr 2022 01:50:11 +0000
Subject: [PATCH] Disable some default options

Co-Authored-By: Yonatan Goldschmidt <yon.goldschmidt@gmail.com>
---
 default_options.h | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/default_options.h b/default_options.h
index 536f4e7..5073b7c 100644
--- a/default_options.h
+++ b/default_options.h
@@ -72,8 +72,8 @@ IMPORTANT: Some options will require "make clean" after changes */
 #define DROPBEAR_SVR_REMOTETCPFWD 1
 
 /* Enable Authentication Agent Forwarding */
-#define DROPBEAR_SVR_AGENTFWD 1
-#define DROPBEAR_CLI_AGENTFWD 1
+#define DROPBEAR_SVR_AGENTFWD 0
+#define DROPBEAR_CLI_AGENTFWD 0
 
 /* Note: Both DROPBEAR_CLI_PROXYCMD and DROPBEAR_CLI_NETCAT must be set to
  * allow multihop dbclient connections */
@@ -210,7 +210,7 @@ group1 in Dropbear server too */
 
 /* Authentication Types - at least one required.
    RFC Draft requires pubkey auth, and recommends password */
-#define DROPBEAR_SVR_PASSWORD_AUTH 1
+#define DROPBEAR_SVR_PASSWORD_AUTH 0
 
 /* Note: PAM auth is quite simple and only works for PAM modules which just do
  * a simple "Login: " "Password: " (you can edit the strings in svr-authpam.c).