OpenBSD ports

The security/tinyssh port

tinyssh-0.0.20250501p0 – minimal SSH server implementation, run from inetd

Description

tinysshd is a minimalistic SSH server which implements only a subset
of SSHv2 features.

It supports only secure cryptography (minimum 128-bit security,
protected against cache-timing attacks) and does not implement older
crypto (such as RSA, DSA, HMAC-MD5, HMAC-SHA1, 3DES, RC4, ...)

tinysshd doesn't implement unsafe features (such as password or
hostbased authentication), nor does it have features like SSH1 protocol,
compression, port forwarding, agent forwarding, X11 forwarding ...

It does not listen to network sockets itself, and should be run
from inetd, tcpserver or similar.

tinysshd doesn't use dynamic memory allocation.

State-of-the-art crypto:
ssh-ed25519, curve25519-sha256, chacha20-poly1305@openssh.com

Postquantum crypto:
sntrup761x25519-sha512@openssh.com

Support for various older standards (ecdsa-sha2-nistp256,
ecdh-sha2-nistp256, aes256-ctr, hmac-sha2-256) was removed in 2019.

As of 20250501, it has 74260 words of code and is a beta release.

WWW: https://github.com/janmojzis/tinyssh

Categories:: net security

Library dependencies

Build dependencies

devel/dwz

OpenBSD ports

The security/tinyssh port

tinyssh-0.0.20250501p0 – minimal SSH server implementation, run from inetd

Description

Library dependencies

Build dependencies

Run dependencies