search for: 0553

CentOS Errata and Bugfix Advisory 2016:0553 Upstream details at : https://rhn.redhat.com/errata/RHBA-2016-0553.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 5672dd8fc5f8a8462c1966c759973498fe23d80f1c7b34b5dc7c7e448e71c432 vsftpd-3.0.2-11.el7_2.x86_64.rpm fd...

CentOS Errata and Bugfix Advisory 2012:0553 Upstream details at : https://rhn.redhat.com/errata/RHBA-2012-0553.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 9130c54b1853f16b47064d5089a4dd8e1e0dd9eeee3cbb774070e30f26683f93 openais-0.80.6-36.el5_8.2.i386.rpm 31...

...o pun intended), IMHO it would be better to break a few of the current use cases but leave the majority functional - than kill scp for all. Regards, Uri > On Aug 3, 2020, at 02:50, Jakub Jelen <jjelen at redhat.com> wrote: > > ?On Sat, 2020-08-01 at 00:17 +0000, Blumenthal, Uri - 0553 - MITLL > wrote: >> Why can the local and remote paths be sanitized? > > Because remote path is *expected* to be expanded by remote shell before > executing remote scp. If you sanitize it in any way, you will break > existing use cases. > >> Regards, >> Uri &gt...

On Sun, 12 Aug 2018, Blumenthal, Uri - 0553 - MITLL wrote: > Tone aside, let me second what Bob said. OpenSSH maintainers seem to > be able to find time for many updates and upgrades - but ECC support > over PKCS#11 appears to repulse them for more than two years (I don't > care to check for exactly how many more). There...

...Especially, since (almost always) I have equal privileges on both local and remote hosts, so in that case I just originate that "scp" from that remote. ;-) TNX ?On 8/3/20, 11:09, "Thorsten Glaser" <t.glaser at tarent.de> wrote: On Mon, 3 Aug 2020, Blumenthal, Uri - 0553 - MITLL wrote: > I conjecture that only few of the existing use cases rely on remote expansion. No, this is used all the time. scp remotehost:foo\* . (Unless rsync is available, but sadly that?s ? GPLv3 and ? not universally installed.) bye, //mirabilos --...

...cores the value and timeliness of using? hardware tokens & PK-based authentication. :-) Sent?from?my?BlackBerry?10?smartphone?on?the Verizon?Wireless?4G?LTE?network. ? Original Message ? From: Nico Kadel-Garcia Sent: Sunday, December 18, 2016 12:56 To: Philipp Vlassakakis Cc: Blumenthal, Uri - 0553 - MITLL; openssh-unix-dev at mindrot.org Subject: Re: Extend logging of openssh-server - e.g. plaintext password On Sun, Dec 18, 2016 at 12:26 PM, Philipp Vlassakakis <philipp at vlassakakis.de> wrote: > Please accept my apologies. Sorry if my previous mails sound rude, it was not my inte...

...oposal at one time to create something like AuthorizedKeysCommand for PKSC11 and other methods that required more complex backend processed so it could be externalized and OpenSSH could be simplified? > > Ben > > Damien Miller wrote: >>> On Mon, 13 Aug 2018, Blumenthal, Uri - 0553 - MITLL wrote: >>> >>> Lack of time on the Open Source projects is understandable, and not uncommon. >>> >>> However, PKCS11 has been in the codebase practically forever - the ECC >>> patches that I saw did not alter the API or such. It is especially &...

On Mon, 13 Aug 2018, Blumenthal, Uri - 0553 - MITLL wrote: > Lack of time on the Open Source projects is understandable, and not uncommon. > > However, PKCS11 has been in the codebase practically forever - the ECC > patches that I saw did not alter the API or such. It is especially > non-invasive when digital signature is con...

We are interested in using Nut on our Federa 6.0 servers. However, our UPS systems are sold under the name "Geek Squad" (sold through the Best Buy chain of department stores). I'm pretty certain Geek Squad does not manufacture these units and they just rebrand them. Does anyone know who makes these units or what they are compatible with in terms of driver level protocol? The ones we

I for one would like to see it merged.? Thanks! Sent?from?my?BlackBerry?10?smartphone?on?the Verizon?Wireless?4G?LTE?network. ? Original Message ? From: Jakob Schlyter Sent: Wednesday, December 14, 2016 04:29 To: openssh-unix-dev at mindrot.org Subject: Re: Call for testing: OpenSSH 7.4 On 2016-12-14 at 01:53, Damien Miller wrote: > OpenSSH 7.4 is almost ready for release, so we would

...x/efi64/* /boot/efi/EFI/extlinux/ However, this step needs to be "self made", copy the kernel and initramfs image to efi root dir - Syslinux proximity. # cp /boot/{vmlinuz,initramfs}-4* /boot/efi/ Let's find out what is the root partition uuid ... # cat /etc/fstab ... UUID=5af9ee8f-0553-4ca0-ab4f-75c06e3e46ae / ... ... for the necessary boot loader configuration file, /boot/efi/EFI/extlinux/extlinux.conf ui menu.c32 menu title Syslinux efi64 timeout 50 label Rawhide 4.4.0-0.rc5.git0.1.fc24.x86_64 kernel /vmlinuz-4.4.0-0.rc5.git0.1.fc24.x86_64 append root=UUID=5af9ee8f-0553-4...

On 2016-12-15 at 01:05, Darren Tucker wrote: > On Thu, Dec 15, 2016 at 6:58 AM, Blumenthal, Uri - 0553 - MITLL > <uri at ll.mit.edu> wrote: > [OSX launchd diff] >> I for one would like to see it merged. > > I took the patch and addressed the comments in > https://bugzilla.mindrot.org/show_bug.cgi?id=2341. If we can get some > confirmation that it > (https://bugzilla...

OpenSSL developers believed that there was a need for a significant change. A part of that change was a conscious choice to break (some of) the existing API. They considered that pain unavoidable. So far I happen to agree with their rationale and approach. Move from visible internal structures to accessor functions is a good thing, regardless of what you may think of it. And the new API *is*

Hi. There was an interesting thread about a year ago, called 'Command equivalent of rgui "File, Save to File"?' (http://tolstoy.newcastle.edu.au/R/e2/help/06/09/0553.html) started by Michael Prager, and contributed to by Duncan Murdoch (I didn't notice anything beyond the four entries they posted). The question was how to replicate programmatically the "Save to File..." option on the File menu. The closest answers given involved either runni...

...onto PKCS#11 tokens (if you configure them so ? that?s a policy issue rather than a technological limitation). -- Regards, Uri Blumenthal On 11/3/17, 12:33, "James Bottomley" <James.Bottomley at HansenPartnership.com> wrote: On Fri, 2017-11-03 at 14:34 +0000, Blumenthal, Uri - 0553 - MITLL wrote: > >> Let me rephrase my question: what does using OpenSSL > engines enable > >> that we can't already do via PKCS#11? > > > > It allows you to use the TPM2 as a secure key store, &g...

...ntos.org When replying, please edit your Subject line so it is more specific than "Re: Contents of CentOS-announce digest..." Today's Topics: 1. CEBA-2012:0554 CentOS 5 cmirror Update (Johnny Hughes) 2. CEBA-2012:0558 CentOS 5 openais Update (Johnny Hughes) 3. CEBA-2012:0553 CentOS 5 openais Update (Johnny Hughes) 4. CEBA-2012:0560 CentOS 5 wget Update (Johnny Hughes) 5. CEBA-2012:0552 CentOS 6 irqbalance Update (Johnny Hughes) 6. CEBA-2012:0565 CentOS 6 sudo Update (Johnny Hughes) 7. CEBA-2012:0566 CentOS 6 glibc Update (Johnny Hughes) 8. CEBA-2012...

Hi list, I was testing out the "doSMP" package from REvolutionR in my regular R2.11.0 installation and I got the following error message.? Well, one obvious thing is that R2.11.0 was built using "i386-pc-mingw32" which is different from what revoIPC used.? I could just use REvolutionR, but all my R peripherals were set up to work with the regular R2.11.0.? So, I really want

On 11/16/16, 8:55 AM, "openssh-unix-dev on behalf of Juha-Matti Tapio" <openssh-unix-dev-bounces+uri=ll.mit.edu at mindrot.org on behalf of jmtapio at ssh.com> wrote: On Wed, Nov 16, 2016 at 12:54:44PM +0000, Blumenthal, Uri - 0553 - MITLL wrote: > I find this approach very bad in general. > > PKCS#11 standard says that *private* keys should not be accessible without authentication. *Public* keys and certificates of course can and should be accessible with no authentication. > > SoftHSM m...

...r); for (i = 0; i < nfchr; ++i) { res[i] = rphit[i] - rpmiss[i]; } UNPROTECT(5); return es; } Could you please help me to find out what I am doing wrong? Many thanks in advance, -- Evarist Planet Research officer, Bioinformatics and Biostatistics unit IRB Barcelona Tel (+34) 93 402 0553 Fax (+34) 93 402 0257 evarist.planet@irbbarcelona.org http://www.irbbarcelona.org/bioinformatics [[alternative HTML version deleted]]

Why can the local and remote paths be sanitized? Regards, Uri > On Jul 31, 2020, at 19:57, Ethan Rahn <ethan.rahn at gmail.com> wrote: > > ?I wanted to bring this up again due to: > https://github.com/cpandya2909/CVE-2020-15778/. This showcases a clear > issue with scp which it sounds like cannot be fixed without breaking scp. > This seems like it would lend some impetus