search for: mcgarry

...a really good job of totally ignoring id_???/identity/authorized_keys etc if the permissions aren't absolutely as required, shouldn't the same stringent tests be applied to the directories/sockets used by the agent? (yes I realize that anyone whose sued to root, can easily su to be me) Tim McGarry

.... Maybe it would be better to use (no,yes,with-nfs). So it's an active decision that the user has to make if the wish to allow authorized_keys(2) from nfs mounts. I'd like to feed this enhancement back into the OpenBSD build, NFS security is not just a problem that relates to Solaris. Tim McGarry -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: openssh-rsa-nfs.txt Url: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20010727/2a00f1c0/attachment.txt

...RSA keys cannot be used to get in as root. If UseLogin is set to no then sshd doesn't do the keylogin, therefore, no home directory (dh Secured NFS). and resticted access to the NIS+ maps. Should sshd be fixed to handle the keylogin. (Obviously this could only work with password auth) Tim McGarry

Hi, Trying to install the Solaris package I made after configure/compilation under Solaris 8. My configure settings --------------------- OpenSSH has been configured with the following options: User binaries: /usr/local/bin System binaries: /usr/local/sbin Configuration files: /usr/local/etc Askpass program: /usr/local/libexec/ssh-askpass

Hi, during our usual work I found it anoying that one can not easily see who logged in using public key authentication. In newer versions of SSH the fingerprint of the public key gets logged, but who can tell which key belongs to whom from his head? So I wrote a little ad-hoc patch (vs. 3.5.p1) so that the comment field on the keys in the authorized_keys[2] files get logged to make life

Hi, We have integrated an Asterisk system (built from CVS HEAD) with an Avaya IP Office switch running Q.SIG on an E1 interface, using a Digium Wildcard TE110P. The system is being used for handling both inbound and outbound call traffic to a set of Asterisk agents who are connected via extensions on the IP Office - there is a maximum of 15 agents at any one time, allowing at least another