1. 28
  1.  

  2. 8

    So an SSH server that only uses TweetNaCl. It seems even smaller than Dropbear!

    Currently though it’s very experimental, with an expected beta of 2016. No idea about a stable, which I find charming in a paranoid sort of way.

    1. 8

      Looks very cool except for the licensing. Can we stop pretending placing copyrighted works in the public domain is a thing that works worldwide? Presumably there are people outside the US who would like to use this.

      https://en.wikipedia.org/wiki/Public_domain#Dedicating_works_to_the_public_domain

      1. 1

        Ah nice! It’s always good to have alternatives and I have always found small software to be fascinating.. now to wait for an IOCCC SSHd entry.

        1. 1

          Presumably it won’t be compatible with existing SSH clients and servers if it uses NaCl. So maybe we should think about it as an alternative protocol to SSH, like mosh, rather than an alternative to Dropbear or OpenSSHd.

          1. 6

            Except it works with the openssh client 6.5 or newer.

            1. 1

              I didn’t realize that! Thank you!

            2. 1

              Presumably it won’t be compatible with existing SSH clients and servers if it uses NaCl.

              SSH is a network protocol. NaCl is a network/crypto library. Why would the use of NaCl imply any level of incompatibility?

              1. 5

                NaCl doesn’t implement the ciphers traditionally used in SSH. @chneukirchen, however, explains that openssh 6.5 and later do implement the NaCl ciphers, and TinySSH can interoperate with them as a result.