search for: keyfile

...0644 --- a/builder/builder.ml +++ b/builder/builder.ml @@ -154,13 +154,13 @@ let main () = fun { Sources.uri = uri; Sources.gpgkey = gpgkey; Sources.proxy = proxy } -> let gpgkey = match gpgkey with - | None -> Sigchecker.No_Key - | Some key -> Sigchecker.KeyFile key in + | None -> Utils.No_Key + | Some key -> Utils.KeyFile key in uri, gpgkey, proxy ) repos in let sources = List.map ( fun (source, fingerprint) -> - source, Sigchecker.Fingerprint fingerprint, Downloader.SystemProxy + source, Utils.Fingerprin...

https://bugzilla.mindrot.org/show_bug.cgi?id=2570 Bug ID: 2570 Summary: ssh-keygen -p will convert openssh-format keyfiles back to pem, improperly? Product: Portable OpenSSH Version: 7.2p1 Hardware: All OS: Linux Status: NEW Severity: normal Priority: P5 Component: ssh-keygen Assignee: unassigned-bugs...

...ions", oPreferredAuthentications }, { "hostkeyalgorithms", oHostKeyAlgorithms }, + { "SNKFile", oSNKFile }, { NULL, 0 } }; @@ -435,6 +436,10 @@ charptr = &options->system_hostfile; goto parse_string; + case oSNKFile: + charptr = &options->snk_keyfile; + goto parse_string; + case oUserKnownHostsFile: charptr = &options->user_hostfile; goto parse_string; @@ -761,6 +766,7 @@ options->num_remote_forwards = 0; options->log_level = (LogLevel) - 1; options->preferred_authentications = NULL; + options->snk_keyfile = N...

I'd like to edit the HowTo/EncryptedFilesystem page the note on how to create a valid keyfile. This is not a trivial action. Creating a plaintext file in vim does not qualify as a valid password. Instead, a valid keyfile is created by doing the following: echo -n "password" > keyfile.key which explicitly creates the file with password on the first line with an explicit...

http://bugzilla.mindrot.org/show_bug.cgi?id=439 ------- Additional Comments From binder at arago.de 2002-11-20 00:37 ------- Created an attachment (id=178) --> (http://bugzilla.mindrot.org/attachment.cgi?id=178&action=view) Proposed patch This patch returns the keyfile's comment if there is one, the keyfile's path otherwise. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

I am in the process of upgrading a client's server hardware and o/s, and thought while I was at it I would move them to the latest rev of tinc (ie. pre7; I think they are currently on pre3). When I first set the tinc daemon up I couldn't get the *KeyFile = <abs-path-to-key> directive to work as stated in the "manual" on tinc.nl.org, but at that time a lot of the documentation there was slightly off anyway, so I just used "*Key = <KEY>" instead. Well, the docs there have been updated and they insists that the *Ke...

Hello, Just to let everyone know that this is still an issue. I am trying to install FreeBSD 9.0 amd64 on a Lenovo X121e and I can't get it to accept the geli passphrase during boot. I've confirmed using kern.geom.eli.visible_passphrase=1 that the passphrase is correct, and the same passphrase is accepted when the system is booted up. I've tried disabling kbdmux in

Hello, I was playing around with geli an gbde after last EuroBSDCon. I liked the idea of encrypting my data which resides in /home/$user. Since this is a "single" user laptop i intended to encrypt the whole /home partition. Well no problems with that. But i wanted the lockfile or keyfile on a seperate usb disc. Which would be mounted or used during boot of the system. I also used gshsec on the usb disc to even make things more difficult. Well here is what i found. You can't use a none mounted disc for the keys, to take things further geli asks for the access passphrease befo...

http://bugzilla.mindrot.org/show_bug.cgi?id=439 Summary: key_try_load_public() always sets pathname as the keyfile's comment Product: Portable OpenSSH Version: -current Platform: All OS/Version: All Status: NEW Severity: trivial Priority: P2 Component: Miscellaneous AssignedTo: openssh-unix-dev at mindrot.org Re...

nuqneH, I've tried using TIS authsrv authentication via bsd auth and found it quite limited. The most important restriction it does not log ip and fqdn of the remote peer, nor the application name, to the authentication server. It does not matter much for TIS authsrv, but since other applications do provide such information, our authsrv version uses it for extra authentication restrictions.

https://bugzilla.mindrot.org/show_bug.cgi?id=439 --- Comment #6 from Damien Miller <djm at mindrot.org> 2010-11-24 11:34:54 EST --- Created attachment 1964 --> https://bugzilla.mindrot.org/attachment.cgi?id=1964 /home/djm/ssh-authfile-preserve-comments.diff Revised diff -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email ------- You are receiving this mail

https://bugzilla.mindrot.org/show_bug.cgi?id=439 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |djm at mindrot.org Blocks| |1845 Status|NEW

https://bugzilla.mindrot.org/show_bug.cgi?id=439 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED --- Comment #8 from Damien Miller <djm at mindrot.org> 2011-09-06 15:33:13 EST --- close resolved bugs

http://bugzilla.mindrot.org/show_bug.cgi?id=439 ------- Additional Comments From djm at mindrot.org 2003-05-14 22:35 ------- This won't work through protocol 2 agent connections IIRC ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

Hi, I run into a certain problem from time to time. 1. Configure and launch ssh-agent. 2. That's usually perfect. 3. Occasionally, connect to a different and less common remote server. Use ssh -i keyfile 4. ssh -i keyfile fails. Because ssh-agent doesn't know about that key. If you are specifying a key "-i key", then you are specifying a key, and clearly don't need to use the keys from ssh-agent. Could ssh prefer the key from the command line? Give that precedence, over using th...

Can anyone with Heimdal KrbV verify this? -------------- next part -------------- An embedded message was scrubbed... From: Dag-Erling Smorgrav <des at ofug.org> Subject: Kerberos buglet in OpenSSH-3.3p1 Date: 25 Jun 2002 14:52:10 +0200 Size: 1291 Url: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020626/347e123e/attachment.mht

...er >>>> ? server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, >>>> winbindd, ntp_signd, kcc, dnsupdate >>>> ? workgroup = EFINITY >>>> ? dns forwarder = 192.168.X.X 192.168.X.X >>>> ? tls enabled = yes >>>> ? tls keyfile = /usr/local/samba/private/tls/server.key >>>> ? tls certfile = /usr/local/samba/private/tls/server.crt >>>> ? tls cafile = /etc/pki/ca-trust/source/anchors/efinity-CA.crt >>> >>> I would take this up with whoever supplied your DC certificates, >>&gt...

...es to other CentOS images as well) 1) the ssh user in this AMI is ec2-user, but sudo to root is not possible in the ssh command unless pseudo-tty allocation forced with ssh -t option. so I changed cloudpack.rb, line 573 from: ssh_remote_execute(server, options[:login], install_command, options[:keyfile]) to process = "ssh -t #{options[:login]}@#{server} -i #{options[:keyfile]} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no \"#{install_command}\""; IO.popen(process) do |f| until f.eof? Puppet.info f.gets end e...

Parse the gpg status output directly within import_keyfile, returning just the key fingerprint. Just code motion, no actual behaviour changes. --- builder/sigchecker.ml | 25 ++++++++++++------------- 1 file changed, 12 insertions(+), 13 deletions(-) diff --git a/builder/sigchecker.ml b/builder/sigchecker.ml index 0c292fb..a1a4220 100644 --- a/builder/s...