[OpenWrt-Devel] Fwd: Removing Telnet
Vittorio G (VittGam)
openwrt at vittgam.net
Tue Sep 8 14:00:20 EDT 2015
Il 08.09.2015 18:31 Janusz Dziemidowicz ha scritto:
> SSH time can be greatly reduced by using ECDSA host key. Dropbear can
> be compiled with ECDSA support, however:
> - it is disabled by default in OpenWRT
> - startup script only generates RSA/DSA host keys, ECDSA host key must
> be generated manually
>
> Using 256 bit ECDSA host key reduces SSH login time for me from 0.7s
> down to 0.13s. Tested on Netgear WNDR3800, ar71xx/generic, I am not
> sure about other architectures.
Also, I think ed25519 keys and chacha20-poly1305 encryption might be worth
a try. They should be faster than ECDSA + AES on embedded processors, but
they need a relatively recent version of the SSH client (read: possible
problems on Windows and Macs).
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
More information about the openwrt-devel
mailing list