diff options
| author | Stijn Tintel <stijn@linux-ipv6.be> | 2017-06-27 22:30:01 +0200 |
|---|---|---|
| committer | Stijn Tintel <stijn@linux-ipv6.be> | 2017-06-28 02:18:20 +0200 |
| commit | 6371159b4ae8b4dd94d6319ac805b0c26962bb14 (patch) | |
| tree | c86ff66187efb4f103551663d4992bb5918060c6 /package/network/services/dropbear/files | |
| parent | 9aaf3d3501642640c9ec74268e671171c8de6103 (diff) | |
| download | upstream-6371159b4ae8b4dd94d6319ac805b0c26962bb14.tar.gz upstream-6371159b4ae8b4dd94d6319ac805b0c26962bb14.tar.bz2 upstream-6371159b4ae8b4dd94d6319ac805b0c26962bb14.zip | |
dropbear: add option to set max auth tries
Add a uci option to set the new max auth tries paramater in dropbear.
Set the default to 3, as 10 seems excessive.
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
Diffstat (limited to 'package/network/services/dropbear/files')
| -rwxr-xr-x | package/network/services/dropbear/files/dropbear.init | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/package/network/services/dropbear/files/dropbear.init b/package/network/services/dropbear/files/dropbear.init index 2d23ebd045..3d8cb2ca5e 100755 --- a/package/network/services/dropbear/files/dropbear.init +++ b/package/network/services/dropbear/files/dropbear.init @@ -41,6 +41,7 @@ validate_section_dropbear() 'Port:list(port):22' \ 'SSHKeepAlive:uinteger:300' \ 'IdleTimeout:uinteger:0' \ + 'MaxAuthTries:uinteger:3' \ 'mdns:bool:1' } @@ -49,7 +50,7 @@ dropbear_instance() local PasswordAuth enable Interface GatewayPorts \ RootPasswordAuth RootLogin rsakeyfile \ BannerFile Port SSHKeepAlive IdleTimeout \ - mdns ipaddrs + MaxAuthTries mdns ipaddrs validate_section_dropbear "${1}" || { echo "validation failed" @@ -78,6 +79,7 @@ dropbear_instance() append_ports "${ipaddrs}" "${Port}" [ "${IdleTimeout}" -ne 0 ] && procd_append_param command -I "${IdleTimeout}" [ "${SSHKeepAlive}" -ne 0 ] && procd_append_param command -K "${SSHKeepAlive}" + [ "${MaxAuthTries}" -ne 0 ] && procd_append_param command -T "${MaxAuthTries}" [ "${mdns}" -ne 0 ] && procd_add_mdns "ssh" "tcp" "$Port" "daemon=dropbear" procd_set_param respawn procd_close_instance |