4
This package will attempt to listen on port 22. If the OpenSSH
5
package ("ssh") is installed, the file /etc/default/dropbear
6
will be set up so that the server does not start by default.
8
You can run Dropbear concurrently with OpenSSH 'sshd' by
9
modifying /etc/default/dropbear so that "NO_START" is set to
10
"0" and changing the port number that Dropbear runs on. Follow
11
the instructions in the file.
13
This package suggests you install the "ssh" package. This package
14
provides the "ssh" client program, as well as the "/usr/bin/scp"
15
binary you will need to be able to retrieve files from a server
16
running Dropbear via SCP.
18
Replacing OpenSSH "sshd" with Dropbear
19
--------------------------------------
21
You will still want to have the "ssh" package installed, as it
22
provides the "ssh" and "scp" binaries. When you install this
23
package, it checks for existing OpenSSH host keys and if found,
24
converts them to the Dropbear format.
26
If this appears to have worked, you should be able to change over
27
by following these steps:
29
1. Stop the OpenSSH server
30
% /etc/init.d/ssh stop
31
2. Prevent the OpenSSH server from starting in the future
32
% touch /etc/ssh/sshd_not_to_be_run
33
3. Modify the Dropbear defaults file, set NO_START to 0 and
34
ensure DROPBEAR_PORT is set to 22.
35
% editor /etc/default/dropbear
36
4. Restart the Dropbear server.
37
% /etc/init.d/dropbear restart
4
This package will attempt to setup the Dropbear ssh server to listen on
5
port 22. If the OpenSSH server package ("openssh-server") is installed,
6
the file /etc/default/dropbear will be set up so that the server does not
9
You can run Dropbear concurrently with OpenSSH 'sshd' by modifying
10
/etc/default/dropbear so that "NO_START" is set to "0", and changing the
11
port number that Dropbear runs on. Follow the instructions in the file.
13
This package suggests you install the "openssh-client" package, which
14
provides the "ssh" client program, as well as the "/usr/bin/scp" binary
15
you will need to be able to retrieve files via SCP from a server running
18
Entropy from /dev/random
19
------------------------
21
The dropbear binary package is configured at compile time to read entropy
22
from /dev/random. If /dev/random on a system blocks when reading data from
23
it, client logins may be delayed until the client times out. The dropbear
24
server writes a notice to the logs when it sees /dev/random blocking. A
25
workaround for such systems is to re-compile the package with
26
DROPBEAR_RANDOM_DEV set to /dev/urandom in options.h.
39
28
See the Dropbear homepage for more information:
40
29
http://matt.ucc.asn.au/dropbear/dropbear.html
43
Entropy from /dev/random
44
------------------------
46
The dropbear binary package is configured at compile time to read
47
entropy from /dev/random. If /dev/random on a system blocks when
48
reading data from it, client logins may be delayed until the client
49
times out. The dropbear server writes a notice to the logs when it
50
sees /dev/random blocking. A workaround for such systems is to
51
re-compile the package with DROPBEAR_RANDOM_DEV set to /dev/urandom