Displaying 8 results from an estimated 8 matches for "load_public_identity_files".
2007 Oct 17
2
[patch] ssh.c load_public_identity_files calls getpwuid twice without copy
...me in replies; I'm not a subscriber.
--- openssh-4.4p1/ssh.c 2006-09-01 22:32:40.000000000 -0700
+++ openssh-4.4p1-fix/ssh.c 2007-10-17 10:23:07.000000000 -0700
@@ -1252,6 +1252,7 @@
#endif /* SMARTCARD */
if ((pw = getpwuid(original_real_uid)) == NULL)
fatal("load_public_identity_files: getpwuid failed");
+ pw = pwcopy(pw);
if (gethostname(thishost, sizeof(thishost)) == -1)
fatal("load_public_identity_files: gethostname: %s",
strerror(errno));
--
Toby Butzon
2016 Jan 14
4
Proposal: always handle keys in separate process
...mpact. Feel free to ignore or flame me,
maybe its stupid or I missed something :)
- private key material should only ever be handled in a separate process
from the SSH client. ssh-agent (maybe slightly extended) seems the
logical choice.
- in places where the client currently reads ssh-keys
(load_public_identity_files), automatically spawn an ssh-agent instead
if none is available. Connection to the agent might be via the usual
SSH_AUTH_SOCK or via an inherited pipe() or socketpair() if newly
spawned. Those anonymous filedescriptors would mean that this
ssh-agent is 'private' to this one client....
2018 Mar 22
16
Call for testing: OpenSSH 7.7
Hi,
OpenSSH 7.7p1 is almost ready for release, so we would appreciate testing
on as many platforms and systems as possible. This is a bugfix release.
Snapshot releases for portable OpenSSH are available from
http://www.mindrot.org/openssh_snap/
The OpenBSD version is available in CVS HEAD:
http://www.openbsd.org/anoncvs.html
Portable OpenSSH is also available via git using the
instructions at
2015 Jul 29
2
[PATCH] ssh: Add option to present certificates on command line
...te_tun]] [user@]hostname [command]\n"
+" [-w local_tun[:remote_tun]] [-z certificate_file]\n"
+" [user@]hostname [command]\n"
);
exit(255);
}
@@ -215,6 +216,7 @@ usage(void)
static int ssh_session(void);
static int ssh_session2(void);
static void load_public_identity_files(void);
+static void load_certificate_files(void);
static void main_sigchld_handler(int);
/* from muxclient.c */
@@ -595,7 +597,7 @@ main(int ac, char **av)
again:
while ((opt = getopt(ac, av, "1246ab:c:e:fgi:kl:m:no:p:qstvx"
- "ACD:E:F:GI:KL:MNO:PQ:R:S:TVw:W:XYy"))...
2015 Jul 30
9
[Bug 2436] New: Add ssh option to present certificates on command line
https://bugzilla.mindrot.org/show_bug.cgi?id=2436
Bug ID: 2436
Summary: Add ssh option to present certificates on command line
Product: Portable OpenSSH
Version: 6.9p1
Hardware: All
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: ssh
Assignee:
2005 Jul 26
1
Linux in-kernel keys support
...enssh-4.1p1-hacked/ssh.c 2005-07-25 23:29:10.000000000 +0200
@@ -73,6 +73,10 @@
#include "monitor_fdpass.h"
#include "uidswap.h"
+#ifdef HAVE_LIBKEYUTIL
+#include "keyutil.h"
+#endif
+
#ifdef SMARTCARD
#include "scard.h"
#endif
@@ -1211,15 +1215,18 @@
load_public_identity_files(void)
{
char *filename;
- int i = 0;
+ int i = 0, count;
Key *public;
+#ifdef HAVE_LIBKEYUTIL
+ key_serial_t *keylist;
+#endif
#ifdef SMARTCARD
Key **keys;
if (options.smartcard_device != NULL &&
options.num_identity_files < SSH_MAX_IDENTITY_FILES &&
(keys...
2017 Oct 10
3
tunnel device name acquisition?
Numerous how-tos all over the Internet show how one would set up
a tunnel using ssh, e.g.:
ssh -f -o Tunnel=ethernet <server_ip> true
I was wondering if there's a way to subsequently acquire the names
of the local and remote tun/tap interfaces (e.g., using the default
"-w any:any") for subsequent automatic tunnel configuration, e.g.:
ip link set $TapDev up
ip link set
2006 Apr 21
4
Solaris 8 x86 rsa pubkey auth problem
Hello,
I got some weird problem with public key authentication using rsa key pair.
Let me first of all explain my setup.
1) I got two Solaris 8 x86 boxes
uname -a
SunOS 5.8 Generic_117351-24 i86pc i386 i86pc
<kdc: 192.168.10.11> <---> <module: 192.168.10.10>
2) They're running absolutely identical openssh installations
I'm using pkgsrc, so I've builded all