diff options
Diffstat (limited to 'default_options.h')
| -rw-r--r-- | default_options.h | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/default_options.h b/default_options.h index 62f2a39..aa9df78 100644 --- a/default_options.h +++ b/default_options.h @@ -37,7 +37,14 @@ IMPORTANT: Some options will require "make clean" after changes */ #define NON_INETD_MODE 1 #define INETD_MODE 1 -/* Include verbose debug output, enabled with -v at runtime. +/* By default Dropbear will re-execute itself for each incoming connection so + that memory layout may be re-randomised (ASLR) - exploiting + vulnerabilities becomes harder. Re-exec causes slightly more memory use + per connection. + This option is ignored on non-Linux platforms at present */ +#define DROPBEAR_REEXEC 1 + +/* Include verbose debug output, enabled with -v at runtime. * This will add a reasonable amount to your executable size. */ #define DEBUG_TRACE 0 |