cannot change dropbear port (in initramfs)
Bug #539904 reported by
DW
This bug affects 6 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
dropbear (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: dropbear
Hello,
I'm using crypsetup & dropbear for remote root encryption and everything is working fine but I would like to move the dropbear server to a non-standard port for security reasons.
I tried changing ports in:
/etc/default/
/etc/init.
/etc/dropbear/run
but none of those seem to change the port from 22 to what I've entered
(I have run update-initramfs -u -k all after I changed settings :)
I also tried searching for '22' in the initramfs dirs that I could find but no luck
Greetings
DW
Changed in dropbear (Ubuntu): | |
status: | New → Confirmed |
To post a comment you must log in.
The problem is in /usr/share/ initramfs- tools/scripts/ init-premount/ dropbear
Last line:
/sbin/dropbear
Obviously some parameters need to be added else it defaults to 22. According to the dropbear man page it uses "-p [address | address:port | port]" but each additional port requires a separate "-p" and it only supports 10 ports maximum.
Workaround (untested): initramfs- tools/dropbear. original /usr/share/ initramfs- tools/scripts/ init-premount/ dropbear initramfs- tools/dropbear. original /usr/share/ initramfs- tools/scripts/ init-premount/ dropbear
dpkg-divert --rename --divert /usr/share/
cp /usr/share/
Edit /usr/share/ initramfs- tools/scripts/ init-premount/ dropbear and add "-p [port number]" then execute:
update-initramfs -u