Le 11/04/2025 à 20:12, Marc SCHAEFER a écrit :
Hello,
systemd dependancies that are activated on a Debian system imply a lot
of library injections into sshd, much more than the stock OpenBSD ssh.
To avoid this, there seem to be two approaches:
- remove those dependancies (see below)
- confine the impact of those dependancies, as proposed
by some developpers, in having those dependancies confined
(not examined here)
[...]
Hello,
disclaimer: you may safely call me a dummy about nearly every network
oriented subject
would you be open to using another implementation of an ssh server?
If so, it would be a third approach:
There are four Debian packages in Bookworm (ssh-server virtual package):
- tinysshd (depends only upon libc6)
- dropbear & dropbear-bin
- lsh-server
- openssh-server
the three first entries are significantly smaller with fewer
dependencies than openssh-server
