search for: peatfield

...I could port-forward unix-domain sockets then the name could be guarenteed unique, similarly if the forwarding could be added after running code we would be ok too. [ Well I could do it with external code at both ends I suppose, but that just makes it harder to run on some platforms ... ] -- Jon Peatfield, DAMTP, Computer Officer, University of Cambridge Telephone: +44 1223 3 37852 Mail: J.S.Peatfield at damtp.cam.ac.uk

...zed. My current patch possibly isn't the right way to do some of this (like the generation of the string from the ssh_prng_cmds file or the hack function I dropped in the place of the fgets() call). [ I'm not including the patch itself in case there is already a better solution. ] -- Jon Peatfield, DAMTP, Computer Officer, University of Cambridge Telephone: +44 1223 3 37852 Mail: J.S.Peatfield at damtp.cam.ac.uk

...reason why the ssh-rand-helper location can't also be... [ I will then nobble ssh-rand-helper to take the prng_cmds from a user-specified source and I'll have a way to give people a small set of files to install anywhere (with a helper shell script to specify all the paths etc) ] -- Jon Peatfield, DAMTP, Computer Officer, University of Cambridge Telephone: +44 1223 3 37852 Mail: J.S.Peatfield at damtp.cam.ac.uk

...RESUID) */ + #if !defined(HAVE_SETEGID) && defined(HAVE_SETRESGID) int setegid(uid_t egid) { --cut-here-- Of course on this particular platform I need other patches (to turn off HP-UX specific stuff which are missing (hpsecurity etc)), but the above might be useful elsewhere... -- Jon Peatfield, DAMTP, Computer Officer, University of Cambridge Telephone: +44 1223 3 37852 Mail: J.S.Peatfield at damtp.cam.ac.uk

...nt to continue connecting (yes/no)? yes Warning: Permanently added 'testhost,10.16.18.11' (DSA) to the list of known hosts. Of course I may have missed somthing important, and I've currently only tested it on one implementation (Linux). Any improvements or suggestions welcome. -- Jon Peatfield, DAMTP, Computer Officer, University of Cambridge Telephone: +44 1223 3 37852 Mail: J.S.Peatfield at damtp.cam.ac.uk

Hi everybody, I've never posted here before but I seem to be having a similar problem to what Tim Rice had in July, namely when running the configure script I get the following: configure: error: *** zlib missing - please install first or check config.log *** However, I have definitely installed zlib (see below): dngwks1:/tmp/openssh-3.0p1 # swlist # Initializing... # Contacting target

...in... Oh, well... If that isn't what you were suggesting, could you elaborate? Thanks, --Matt > -----Original Message----- > From: Mats Andersson [mailto:mats at mindbright.se] > Sent: Tuesday, March 13, 2001 12:30 AM > To: Lewandowsky, Matt > Cc: 'Gert Doering'; J.S.Peatfield at damtp.cam.ac.uk; dwd at bell-labs.com; > openssh-unix-dev at mindrot.org > Subject: ssh through proxy (was: prng_cmds/init_rng() question/patch) > > > > Hi, > > Sorry for pushing this even further off topic but since > someone mentioned > MindTerm I couldn'...

Is the following (from configure.in) intended: *-dec-osf*) if test ! -z "USE_SIA" ; then AC_MSG_CHECKING(for Digital Unix Security Integration Architecture) should that be "$USE_SIA" or similar or what is the point of testing a constant string for being zero length... The reason I ask is the for complex reasons we don't want SIA enabled on Tru64 since it breaks some

Maybe I just can't read properly, but I just spent the best part of a day trying to work out why HostbasedAuthentication wouldn't work for me (with protocol 2 in openssh-2.9p1). It seems (though maybe there is something wrong with my install), that after enabling it in the sshd_config it doesn't work, since the client will not in fact request it (by default). I was fooled by the

Just for peace of mind, can someone who knows the openssh code better than I do, confirm that openssh doesn't use (in any circumstances) the openssl prng (since the code in versions prior to 0.9.6b is rather weak). My understanding is that it doesn't (using either /dev/random, egd, prngd or the builtin code), but I may have missed some other use of the openssl prng elsewhere... -- Jon

...ux-security] denial of service attack on login In-reply-to: Your message of "Tue, 26 Nov 1996 07:49:33 PST." <199611261549.HAA16832@parc.power.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Wed, 27 Nov 1996 10:35:55 +0000 From: Jon Peatfield <J.S.Peatfield@damtp.cam.ac.uk> Approved: R.E.Wolff@BitWizard.nl Hmm, I can imagine utmp being locked this way, but is it worth it for wtmp? All login does is add an entry to the end... Linux lacks the updwtmp{,x}() calls which SVR4 provides as a packaged way to update wtmp. My local logi...

Am I missing something obvious or does the scp in openssh not interoperate with the scp in ssh-2.4? I don't have any ssh-2.4 systems but a user here trying to fetch a file from a site which uses it (and doesn't have scp1 gets): scp -o 'protocol 2' -o 'loglevel debug3' -v herrada at eurus2.us.es:tf19.dat