janmojzis/tinyssh janmojzis/tinyssh

  • Stars
    star
    1,428
  • Rank 32,951 (Top 0.7 %)
  • Language
    C
  • License
    Creative Commons ...
  • Created almost 10 years ago
  • Updated 7 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
janmojzis/tinyssh
github

janmojzis

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

TinySSH is small server (less than 100000 words of code)

Introduction

  • tinysshd is a minimalistic SSH server which implements only a subset of SSHv2 features.
  • tinysshd supports only secure cryptography (minimum 128-bit security, protected against cache-timing attacks)
  • tinysshd doesn't implement older crypto (such as RSA, DSA, HMAC-MD5, HMAC-SHA1, 3DES, RC4, ...)
  • tinysshd doesn't implement unsafe features (such as password or hostbased authentication)
  • tinysshd doesn't have features such: SSH1 protocol, compression, port forwarding, agent forwarding, X11 forwarding ...
  • tinysshd doesn't use dynamic memory allocation (no allocation failures, etc.)

Crypto primitives

Project timelime

  • experimental: 2014.01.01 - 2014.12.31 (experimentation)
  • alpha(updated): 2015.01.01 - 2017.12.31 (not ready for production use, ready for testing)
  • beta(updated): 2018.01.01 - ????.??.?? (ready for production use)
  • stable: expected ????.??.?? - (ready for production use - including post-quantum crypto)

Current release (20230101)

  • has 62989 words of code
  • beta release

How-to run

       TCPSERVER
              tcpserver -HRDl0 0.0.0.0 22 /usr/sbin/tinysshd -v /etc/tinyssh/sshkeydir &

       BUSYBOX
              busybox tcpsvd 0 22 tinysshd -v /etc/tinyssh/sshkeydir &

       INETD
           /etc/inetd.conf:
               ssh stream tcp nowait root /usr/sbin/tinysshd tinysshd -l -v /etc/tinyssh/sshkeydir

       SYSTEMD
           tinysshd.socket:
               [Unit]
               Description=TinySSH server socket
               ConditionPathExists=!/etc/tinyssh/disable_tinysshd

               [Socket]
               ListenStream=22
               Accept=yes

               [Install]
               WantedBy=sockets.target

           [email protected]:
               [Unit]
               Description=Tiny SSH server
               After=network.target auditd.service

               [Service]
               ExecStartPre=-/usr/sbin/tinysshd-makekey -q /etc/tinyssh/sshkeydir
               EnvironmentFile=-/etc/default/tinysshd
               ExecStart=/usr/sbin/tinysshd ${TINYSSHDOPTS} -- /etc/tinyssh/sshkeydir
               KillMode=process
               SuccessExitStatus=111
               StandardInput=socket
               StandardError=journal

               [Install]
               WantedBy=multi-user.target

More Repositories

1

acmeshell

Shell-style client for LetsEncrypt
Python
34
star
2

dq

Recursive DNS/DNSCurve server and comandline tool to debug DNS/DNSCurve
C
23
star
3

ntpserver

Pure python NTP server
Python
15
star
4

pstree

Unix process tree
C
15
star
5

httpfile

Httpfile is a HTTP server derived from publicfile-0.52
C
9
star
6

mcencrypt

Post-quantum encryption/decryption tools
C
7
star
7

tlswrapper

inetd-style TLS encryption wrapper
C
4
star
8

curvevpn

C
2
star
9

extremetools

extreme tools
C
2
star