search for: cedricblanch

.... There is a simple solution: Hardware certified per MIL standards (US DOD MIL standards) support kerberized telnet, so ssh can be declared as "not needed" / "obsolete" for that purpose. Ced -- Cedric Blancher <cedric.blancher at gmail.com> [https://plus.google.com/u/0/+CedricBlancher/] Institute Pasteur

On Thu, 10 Aug 2023, Cedric Blancher wrote: >We're experiencing rather very bad latency spikes on busy Linux >systems, for example if one machine is the jumphost (ssh -J) for a few >hundred connections, while at the same time handles CPU intensive >tasks. > >Would RT/Linux SCHED_FIXED or SCHED_RR be of help in such a case, e.g. Did you already check the old and tried method

Hi, /bin/sh can be very different.... Ubuntu 22.04: :; ls -hal /bin/sh /bin/bash -rwxr-xr-x 1 root root 1,4M Jan 6 2022 /bin/bash lrwxrwxrwx 1 root root 4 Mar 23 2022 /bin/sh -> dash OpenIndiana (old OpenSolaris reincarnation) :; ls -hal /bin/sh /bin/bash -r-xr-xr-x 1 root bin 1,4M Jan 25 09:42 /bin/bash lrwxrwxrwx 1 root root 9 Apr 6 2021 /bin/sh -> i86/ksh93 On

Hi! ---- I'm doing some testing with the ssh client OpenSSH on Windows 10 (10.0-19045) but due to firewall restrictions I need to run my experiments from a local port < 1024 (not negotiable). I thought that this was no problem... but ssh |bind()| fails with "address in use" (yes, I checked netstat, no one is there) for any port < 1023. Then I checked $ netstat # and $ netsh

On Fri, 29 Dec 2017, Daniel Kahn Gillmor wrote: > On Thu 2017-12-28 21:31:28 -0800, Dan Mahoney (Gushi) wrote: > > Why not make minimum key length a tunable, just as the other options are? > > Because the goal of building secure software is to make it easy to > answer the question "are you using it securely?" This is a nice summation of our approach. It's the

...processes into the SCHED_FIXED scheduling class, with a priority higher than the non-interactive compute processes? Also, do I interpret it correctly that each forwarded TCP connection has its own process?! Ced -- Cedric Blancher <cedric.blancher at gmail.com> [https://plus.google.com/u/0/+CedricBlancher/] Institute Pasteur

On 02/01/18 03:29, Michael Str?der wrote: > How high is the risk that this unmaintained device is added to > yet-another-bot-net in the Internet-of-shitty-devices or is used to > enter parts of your network. I think that is what is called a straw-man argument.? If a device can be compromised in the way you suggest, then I am sure it will be replaced, but it will be replaced because it

On Windows, ?scp C:/foo/bar remotehost:? will attempt to connect to a remote host ?C? and access file ?/foo/bar?. There is currently no syntax or flag to allow copying files that start with a drive name. This patch changes the behaviour (only on Cygwin) by considering that a single letter followed by a colon is a Windows drive name and thus an absolute path. This is also more consistent with the