Dropbear (software)
Dropbear is a software package written by Matt Johnston that provides a Secure Shell-compatible server and client. It is designed as a replacement for standard OpenSSH for environments with low memory and processor resources, such as embedded systems. It is a core component of OpenWrt and other router distributions.
Developer(s) | Matt Johnston |
---|---|
Initial release | April 2003, 06 |
Stable release | 2020.80 (June 26, 2020 ) [±][1] |
Repository | |
Written in | C |
Operating system | Unix-like |
Type | Remote access |
License | MIT license |
Website | matt |
Dropbear was originally released in April 2003.
Technology
Dropbear implements version 2 of the Secure Shell (SSH) protocol.[2]
The cryptographic algorithms are implemented using third-party cryptographic libraries included internally in the Dropbear distribution. It derives some parts from OpenSSH to handle BSD-style pseudo terminals.[3]
Features
Dropbear implements the complete SSH version 2 protocol in both the client and the server. It does not support SSH version 1 backwards-compatibility in order to save space and resources, and to avoid the inherent security vulnerabilities in SSH version 1. SCP is also implemented.[4] SFTP support relies on a binary file which can be provided by OpenSSH or similar programs. FISH works in any case and is supported by Konqueror.
Dropbear supports elliptic curve cryptography for key exchange, as of version 2013.61test and beyond.[5]
See also
- Lsh – GNU Project's implementation of ssh
- Comparison of SSH clients
- Comparison of SSH servers
References
- "Dropbear ChangeLog". 2020-06-26. Retrieved 2020-07-10.
- "dropbear(8)". Ubuntu. Retrieved 2020-05-23.
- Matt Johnston. "Dropbear SSH". Retrieved 2020-05-23.
PTY handling code is taken from OpenSSH
- Matt Johnston (2004-06-01). "Makefile.in contains updated files required". Retrieved 2020-05-23.
- "CHANGES". 14 November 2013. Retrieved 2020-05-23.
ECC (elliptic curve) support. Supports ECDSA hostkeys (requires new keys to be generated) and ECDH for setting up encryption keys[...]