dropbear/dropbear.8

.TH dropbear 8
.SH NAME
dropbear \- lightweight SSH2 server
.SH SYNOPSIS
.B dropbear
[\-FEmwsgjki] [\-b
.I banner\fR] [\-d
.I dsskey\fR] [\-r
.I rsakey\fR] [\-p
.IR port ]
.SH DESCRIPTION
.B dropbear
is a SSH 2 server designed to be small enough to be used in small memory
environments, while still being functional and secure enough for general use.
.SH OPTIONS
.TP
.B \-b \fIbanner
bannerfile.
Display the contents of the file
.I banner
before user login (default: none).
.TP
.B \-d \fIdsskey
dsskeyfile.
Use the contents of the file
.I dsskey
for the dss host key (default: /etc/dropbear/dropbear_dss_host_key).
This file is generated with
.BR dropbearkey (8).
.TP
.B \-r \fIrsakey
rsakeyfile.
Use the contents of the file
.I rsakey
for the rsa host key (default: /etc/dropbear/dropbear_rsa_host_key).
This file is generated with
.BR dropbearkey (8).
.TP
.B \-F
Don't fork into background.
.TP
.B \-E
Log to standard error rather than syslog.
.TP
.B \-m
Don't display the message of the day on login.
.TP
.B \-w
Disallow root logins.
.TP
.B \-s
Disable password logins.
.TP
.B \-g
Disable password logins for root.
.TP
.B \-j
Disable local port forwarding.
.TP
.B \-k
Disable remote port forwarding.
.TP
.B \-p \fI[address:]port
Listen on specified 
.I address
and TCP
.I port.
If just a port is given listen
on all addresses.
up to 10 can be specified (default 22 if none specified).
.TP
.B \-i
Service program mode.
Use this option to run
.B dropbear
under TCP/IP servers like inetd, tcpsvd, or tcpserver.
In program mode the \-F option is implied, and \-p options are ignored.
.TP
.B \-P \fIpidfile
Specify a pidfile to create when running as a daemon. If not specified, the 
default is /var/run/dropbear.pid
.TP
.B \-a
Allow remote hosts to connect to forwarded ports.
.TP
.B \-W \fIwindowsize
Specify the per-channel receive window buffer size. Increasing this 
may improve network performance at the expense of memory use. Use -h to see the
default buffer size.
.TP
.B \-K \fItimeout_seconds
Ensure that traffic is transmitted at a certain interval in seconds. This is
useful for working around firewalls or routers that drop connections after
a certain period of inactivity. The trade-off is that a session may be
closed if there is a temporary lapse of network connectivity. A setting
if 0 disables keepalives.
.SH AUTHOR
Matt Johnston (matt@ucc.asn.au).
.br
Gerrit Pape (pape@smarden.org) wrote this manual page.
.SH SEE ALSO
dropbearkey(8), dbclient(1)
.P
http://matt.ucc.asn.au/dropbear/dropbear.html
Added dropbear.8 and dropbearkey.8 back in --HG-- extra : convert_revision : dda3a93a5b9fb3338ea7fc45c45da6b76e3850f0 2004-09-14 15:26:50 +00:00			`.TH dropbear 8`
			`.SH NAME`
			`dropbear \- lightweight SSH2 server`
			`.SH SYNOPSIS`
			`.B dropbear`
			`[\-FEmwsgjki] [\-b`
			`.I banner\fR] [\-d`
			`.I dsskey\fR] [\-r`
			`.I rsakey\fR] [\-p`
			`.IR port ]`
			`.SH DESCRIPTION`
			`.B dropbear`
			`is a SSH 2 server designed to be small enough to be used in small memory`
			`environments, while still being functional and secure enough for general use.`
			`.SH OPTIONS`
			`.TP`
			`.B \-b \fIbanner`
			`bannerfile.`
			`Display the contents of the file`
			`.I banner`
			`before user login (default: none).`
			`.TP`
			`.B \-d \fIdsskey`
			`dsskeyfile.`
			`Use the contents of the file`
			`.I dsskey`
			`for the dss host key (default: /etc/dropbear/dropbear_dss_host_key).`
			`This file is generated with`
			`.BR dropbearkey (8).`
			`.TP`
			`.B \-r \fIrsakey`
			`rsakeyfile.`
			`Use the contents of the file`
			`.I rsakey`
			`for the rsa host key (default: /etc/dropbear/dropbear_rsa_host_key).`
			`This file is generated with`
			`.BR dropbearkey (8).`
			`.TP`
			`.B \-F`
			`Don't fork into background.`
			`.TP`
			`.B \-E`
			`Log to standard error rather than syslog.`
			`.TP`
			`.B \-m`
			`Don't display the message of the day on login.`
			`.TP`
			`.B \-w`
			`Disallow root logins.`
			`.TP`
			`.B \-s`
			`Disable password logins.`
			`.TP`
			`.B \-g`
			`Disable password logins for root.`
			`.TP`
			`.B \-j`
			`Disable local port forwarding.`
			`.TP`
			`.B \-k`
			`Disable remote port forwarding.`
			`.TP`
Document -p [address:]port --HG-- extra : convert_revision : d2f4cea9ad411a132cc799d5428b87a70126620b 2007-02-22 15:51:15 +00:00			`.B \-p \fI[address:]port`
			`Listen on specified`
			`.I address`
			`and TCP`
			`.I port.`
			`If just a port is given listen`
			`on all addresses.`
Added dropbear.8 and dropbearkey.8 back in --HG-- extra : convert_revision : dda3a93a5b9fb3338ea7fc45c45da6b76e3850f0 2004-09-14 15:26:50 +00:00			`up to 10 can be specified (default 22 if none specified).`
			`.TP`
			`.B \-i`
			`Service program mode.`
			`Use this option to run`
			`.B dropbear`
			`under TCP/IP servers like inetd, tcpsvd, or tcpserver.`
			`In program mode the \-F option is implied, and \-p options are ignored.`
* add -g (dbclient) and -a (dropbear) options for allowing non-local hosts to connect to forwarded ports. Rearranged various some of the tcp listening code. * changed to /* */ style brackets in svr-authpam.c --HG-- extra : convert_revision : c1e04e648867db464fe9818c4910e4320cd50c32 2005-12-04 16:13:11 +00:00			`.TP`
Add -N "no remote command" dbclient option. Document -N in dbclient.1 and -P in dropbear.8 --HG-- extra : convert_revision : 7cada79bf8f61e09a72e5d492170bd10ab0acee3 2006-06-07 15:01:20 +00:00			`.B \-P \fIpidfile`
			`Specify a pidfile to create when running as a daemon. If not specified, the`
			`default is /var/run/dropbear.pid`
			`.TP`
* add -g (dbclient) and -a (dropbear) options for allowing non-local hosts to connect to forwarded ports. Rearranged various some of the tcp listening code. * changed to /* */ style brackets in svr-authpam.c --HG-- extra : convert_revision : c1e04e648867db464fe9818c4910e4320cd50c32 2005-12-04 16:13:11 +00:00			`.B \-a`
			`Allow remote hosts to connect to forwarded ports.`
Add -W <windowsize> argument and document it. --HG-- extra : convert_revision : 98d4c0f15480bf749c451034cbc565d7e9d3b8dc 2007-07-25 15:44:25 +00:00			`.TP`
			`.B \-W \fIwindowsize`
			`Specify the per-channel receive window buffer size. Increasing this`
			`may improve network performance at the expense of memory use. Use -h to see the`
			`default buffer size.`
- Add -K keepalive flag for dropbear and dbclient - Try to reduce the frequency of select() timeouts - Add a max receive window size of 1MB --HG-- extra : convert_revision : 9aa22036cb511cddb35fbc0e09ad05acb39b64d1 2007-08-08 15:12:06 +00:00			`.TP`
			`.B \-K \fItimeout_seconds`
			`Ensure that traffic is transmitted at a certain interval in seconds. This is`
			`useful for working around firewalls or routers that drop connections after`
			`a certain period of inactivity. The trade-off is that a session may be`
			`closed if there is a temporary lapse of network connectivity. A setting`
			`if 0 disables keepalives.`
Added dropbear.8 and dropbearkey.8 back in --HG-- extra : convert_revision : dda3a93a5b9fb3338ea7fc45c45da6b76e3850f0 2004-09-14 15:26:50 +00:00			`.SH AUTHOR`
			`Matt Johnston (matt@ucc.asn.au).`
			`.br`
			`Gerrit Pape (pape@smarden.org) wrote this manual page.`
			`.SH SEE ALSO`
* Add references in the manpages to the dbclient manpage * Fix multiple typos in client usage information --HG-- extra : convert_revision : 6b29d70d3c4b1933d3c8f6b3e63692db76ffb51f 2005-03-13 16:23:15 +00:00			`dropbearkey(8), dbclient(1)`
Added dropbear.8 and dropbearkey.8 back in --HG-- extra : convert_revision : dda3a93a5b9fb3338ea7fc45c45da6b76e3850f0 2004-09-14 15:26:50 +00:00			`.P`
			`http://matt.ucc.asn.au/dropbear/dropbear.html`