|
Documentation Home for Devicescape Wireless Infrastructure Platform > Package Reference
dropbear package
Information on this package is covered here.
|
Package
|
Description
|
License
|
|
dropbear
|
Small footprint SSH server and client.
|
|
Summary
Dropbear is a relatively small SSH 2 server that can be linked against the uClibc C runtime library. It supports the following features:
- X11 forwarding, and authentication-agent forwarding for OpenSSH clients
- Can run from inetd or standalone
- Compatible with OpenSSH ~/.ssh/authorized_keys public key authentication
- The daemon, keygen, key converter, and client can be compiled into a single binary
- TCP forwarding support
- Features can easily be disabled when compiling to save space
For security reasons, Devicescape strongly recommends running an SSH server instead of a telnet server.
Usage
Start/Stop Options
Use the command line interface (CLI) to get status and stop/start the SSH service (provided by the dropbear package) as follows.
|
Command
|
Description
|
|
get ssh status
|
Returns status of the SSH service (up is on, down is off).
|
|
set ssh status down
|
Stops the SSH service.
|
|
set ssh status up
|
Starts the SSH service.
|
|
Note
|
If you want to modify the command line options, you must edit the DMAN dropbear provider in device-mgmt-agent-ap package ssh.c.
|
Runtime Configuration
Other than the options described in the Start/Stop Options, there are no real runtime configuration parameters.
The init scripts provided with the Devicescape Wireless Infrastructure Platform will automatically generate RSA and DSS host keys under /etc/dropbear if they are not found.
Command Line Options
|
Command
|
Description and Arguments
|
|
-b bannerfile
|
Display the contents of bannerfile before user login
Default: None
|
|
-d dsskeyfile
|
Use dsskeyfile for the dss host key
Default: /etc/dropbear/dropbear_dss_host_key
|
|
-r rsakeyfile
|
Use rsakeyfile for the RSA host key.
Default: /etc/dropbear/dropbear_rsa_host_key
|
|
-F
|
Don't fork into background.
|
|
-E
|
Log to stderr rather than syslog.
|
|
-m
|
Don't display the motd on login.
|
|
-w
|
Disallow root logins.
|
|
-s
|
Disable password logins
|
|
-g
|
Disable password logins for root.
|
|
-j
|
Disable local port forwarding.
|
|
-k
|
Disable remote port forwarding.
|
|
-i
|
Start for inetd
|
|
-p port
|
Listen on specified tcp port, up to 10 can be specified.
Default: 22 if none specified
|
Debugging
The most useful option for debugging is the -E option to write any error messages to stderr. This will usually provide sufficient information to debug any configuration-related problems with the SSH server.
To set this option:
- Add the following line to
/etc/default/dropbear:
Building the Package
Follow standard instructions for building userspace packages in the Devicescape Developer Guide topic on "Building the Packages", see subtopic: "Building a Userspace Package from a Source RPM"
The initialization script and defaults for dropbear are in the ds-init-dropbear package which is generated by the ds-init source package.
Licensing
Dropbear is Open Source software, distributed under a MIT-style license. (See http://www.opensource.org/licenses/mit-license.php for license information and Dropbear License.)
Related Packages
Required
ds-init-dropbear package (see Quick View of Packages)
zlib package (see Quick View of Packages)
Suggested
None
| 
