search for: secure_filenam

Displaying 20 results from an estimated 31 matches for "secure_filenam".

Did you mean: secure_filename
2003 Jul 09
3
OpenSSH 3.6.1p2 ON SCO 3.2v4.2 + STRICTMODES -->yes
...t 1199 ssh2 debug1: userauth-request for user root service ssh-connection method publickey debug1: attempt 1 failures 1 debug2: input_userauth_request: try method publickey debug1: test whether pkalg/pkblob are acceptable debug1: trying public key file //.ssh/authorized_keys debug3: secure_filename: checking '/.ssh' debug3: secure_filename: checking '' Authentication refused: bad ownership or modes for directory debug1: trying public key file //.ssh/authorized_keys2 debug3: secure_filename: checking '/.ssh' debug3: secure_filename: checking '...
2001 Nov 16
1
auth.c:secure_filename() ownership test continues past home directory
My colleagues and I believe we have found a problem in the auth.c:secure_filename() code which causes it to be more aggressive than intended. We first noticed the problem in OpenSSH-2.9.9. secure_filename() comments that the loop walking up the directory components stops if it is past the home directory. However, the filename argument to the function is canonicalized with r...
2007 Sep 07
0
Public key reading abstraction (to allow future work)
.../* Open the file containing the authorized keys. */ - f = fopen(file, "r"); + f = open_keyfile(file, pw, options.strict_modes); if (!f) { - /* Restore the privileged uid. */ - restore_uid(); - xfree(file); - return (0); - } - if (options.strict_modes && - secure_filename(f, file, pw, line, sizeof(line)) != 0) { - xfree(file); - fclose(f); - logit("Authentication refused: %s", line); + xfree(file); restore_uid(); return (0); } === modified file 'auth.c' --- auth.c 2007-07-30 09:54:36 +0000 +++ auth.c 2007-08-02 12:03:02 +0000 @@ -397,...
2001 Oct 16
2
Solaris 2.5.1 dirname() bug in libgen.a affects OpenSSH2.9.9p2 auth.c
I've discovered a problem with OpenSSH 2.9.9p2 under Solaris 2.5.1 . In auth.c, secure_filename() walks upwards toward the user's home directory or the filesystem root, verifying that no directories along the way are group or world writable. Solaris 2.5.1's dirname() function has a bug where dirname("/.ssh") returns an empty string instead of "/". This c...
2002 Mar 16
4
[Bug 165] Problem with SSH1 Keys on RedHat7.2
http://bugzilla.mindrot.org/show_bug.cgi?id=165 ------- Additional Comments From markus at openbsd.org 2002-03-17 04:31 ------- never seen this. what does sshd -ddd say? ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
2003 Jul 10
0
[Bug 615] OpenSSH 3.6.1p2 ON SCO 3.2v4.2 + STRICTMODES -->yes
...t 1199 ssh2 debug1: userauth-request for user root service ssh-connection method publickey debug1: attempt 1 failures 1 debug2: input_userauth_request: try method publickey debug1: test whether pkalg/pkblob are acceptable debug1: trying public key file //.ssh/authorized_keys debug3: secure_filename: checking '/.ssh' debug3: secure_filename: checking '' Authentication refused: bad ownership or modes for directory debug1: trying public key file //.ssh/authorized_keys2 debug3: secure_filename: checking '/.ssh' debug3: secure_filename: checking '...
2001 Oct 03
0
a trouble about filename authentication in 2.9.9p2
Hello, After upgrading OpenSSH to 2.9.9p2, I've found some troubles on public key authentication with an sshd working at Solaris 2.5.1 machine. The server failed to validate the user's path in auth.c:secure_filename(). There were actually two reasons for the trouble: 1. the "realpath" of pw->pw_dir (that realpath() would return) was different from pw->pw_dir itself. Thus, comparing the directory name to each directory in the for loop of the function never succeeded. 2. Our Solaris...
2002 Feb 20
1
Is there a way to tell the sshd to ignore the security check on t he user's home permissions?
Is there a way to tell the sshd to ignore the security check on the user's home permissions? debug3: secure_filename: checking '/ftpdata/pxdata/pold/data/.ssh' debug3: secure_filename: checking '/ftpdata/pxdata/pold/data' Authentication refused: bad ownership or modes for directory /ftpdata/pxdata/fold/data debug1: restore_uid debug2: userauth_p...
2002 Oct 15
1
ssh output
...g debug3: mm_request_send entering: type 20 debug3: monitor_read: checking request 20 debug3: mm_answer_keyallowed entering debug3: mm_answer_keyallowed: key_from_blob: 0x809ae28 debug1: temporarily_use_uid: 0/0 (e=0) debug1: trying public key file /root/.ssh/authorized_keys debug3: secure_filename: checking '/root/.ssh' debug3: secure_filename: checking '/root' debug3: secure_filename: terminating check at '/root' debug2: key_type_from_name: unknown key type '-----BEGIN' debug3: key_read: no key found debug2: user_key_allowed: check options: &...
2002 Jul 03
3
[Bug 333] X11 forwarding not working in OpenSSH 3.4p1
http://bugzilla.mindrot.org/show_bug.cgi?id=333 ------- Additional Comments From stevesk at pobox.com 2002-07-04 05:41 ------- i will guess configure did not find an xauth when it was built ($PATH is irrelevant here). please verify. see $HOME/.ssh/rc example in sshd.8 which can be used as a workaround in this case. djm: autoconf-2.53 exposes a bug for xauth path
2003 Nov 13
1
Problem with 3.7.1p2 on Reliant Unix
...tion method publickey debug1: attempt 1 failures 1 debug2: input_userauth_request: try method publickey debug1: test whether pkalg/pkblob are acceptable debug1: temporarily_use_uid: 2004/2000 (e=0/1) debug1: trying public key file /home/hendl/.ssh/authorized_keys debug3: secure_filename: checking '/home/hendl/.ssh' debug3: secure_filename: checking '/home/hendl' debug3: secure_filename: terminating check at '/home/hendl' debug1: matching key found: file /home/hendl/.ssh/authorized_keys, line 1 Found matching RSA...
2003 Feb 24
1
[Bug 502] New: sshd fails when "Compression yes" set on HPUX
...bug3: : key_from_blob: 4002f8a0 debug1: temporarily_use_uid: 0/3 (e=0/3) debug1: trying public key file //.ssh/authorized_keys debug1: restore_uid: 0/3 debug1: temporarily_use_uid: 0/3 (e=0/3) debug1: trying public key file //.ssh/authorized_keys2 debug3: secure_filename: checking '/.ssh' debug3: secure_filename: checking '/' debug3: secure_filename: terminating check at '/' debug1: matching key found: file //.ssh/authorized_keys2, line 1 Found matching DSA key: be:ca:c4:c5:ad:b3:4a:7c:42:c1:2d:3e:7e:30:91:e5 debug1:...
2003 May 14
1
AIX Problem
Hello All, I'm getting a peculiar error can you guys tell me what I need? debug1: restore_uid debug2: key not found debug1: temporarily_use_uid: 210/1 (e=0) debug1: trying public key file /home/applmgr/.ssh/authorized_keys2 debug3: secure_filename: checking '/home/applmgr/.ssh' debug3: secure_filename: checking '/home/applmgr' debug3: secure_filename: terminating check at '/home/applmgr' debug1: matching key found: file /home/applmgr/.ssh/authorized_keys2, line 1 Found matc...
2009 Feb 06
3
Hung connection over Juniper Tunnel
...ug3: mm_request_receive entering debug3: monitor_read: checking request 21 debug3: mm_answer_keyallowed entering debug3: mm_answer_keyallowed: key_from_blob: 0x7f8a5c7aaf20 debug1: temporarily_use_uid: 0/0 (e=0/0) debug1: trying public key file /root/.ssh/authorized_keys debug3: secure_filename: checking '/root/.ssh' debug3: secure_filename: checking '/root' debug3: secure_filename: terminating check at '/root' debug3: key_read: type mismatch debug2: user_key_allowed: check options: 'ssh-dss **deleted**' debug2: key_type_from_name: unknown...
2002 Jun 25
10
[Bug 296] Priv separation does not work on OSF/1
http://bugzilla.mindrot.org/show_bug.cgi?id=296 ------- Additional Comments From bugzilla-openssh at thewrittenword.com 2002-06-26 01:20 ------- Are you sure? I have 3.3p1 running on 4.0D and 5.1 and I can connect as non-root. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
2004 Nov 27
0
buffer_get_bignum2: negative numbers not supported
...mm_request_send entering: type 20 debug3: monitor_read: checking request 20 debug3: mm_answer_keyallowed entering debug3: mm_answer_keyallowed: key_from_blob: 0x8098168 debug1: temporarily_use_uid: 0/0 (e=0/0) debug1: trying public key file /etc/ssh/authorized_keys.root debug3: secure_filename: checking '/etc/ssh' debug3: secure_filename: checking '/etc' debug3: secure_filename: checking '/' buffer_get_bignum2: negative numbers not supported debug1: do_cleanup debug3: mm_key_allowed: waiting for MONITOR_ANS_KEYALLOWED debug3: mm_request_receive_...
2007 Aug 14
2
OpenSSH public key problem with Solaris 10 and LDAP users?
...m_request_receive entering debug3: monitor_read: checking request 20 debug3: mm_answer_keyallowed entering debug3: mm_answer_keyallowed: key_from_blob: 99468 debug1: temporarily_use_uid: 12345/10 (e=0/0) debug1: trying public key file /tmp/testme/.ssh/authorized_keys debug3: secure_filename: checking '/tmp/testme/.ssh' debug3: secure_filename: checking '/tmp/testme' debug3: secure_filename: terminating check at '/tmp/testme' debug1: matching key found: file /tmp/testme/.ssh/authorized_keys, line 1 Found matching RSA...
2005 Feb 28
1
[Bug 988] sshd StrictModes check failed with fs acl
...ed_keys 4) Set acl on /home/test like "setfacl -m u:test:rwx /home/test" 5) Try to login as test on remote host via ssh Results: PubkeyAuthentication failed. sshd error message: "debug1: trying public key file /home/test/.ssh/authorized_keys debug3: secure_filename: checking '/home/test/.ssh' debug3: secure_filename: checking '/home/test' Authentication refused: bad ownership or modes for directory /home/test" ------- You are receiving this mail because: ------- You are the assignee for the bug, or are wa...
2002 Mar 21
0
StrictModes yes fails in some cases on AIX
today I've got a strange error on a AIX 4.3 box (OpenSSH 3.1p1) secure_filename() fails with "realpath /users/fmohr/.ssh/authorized_keys failed: Permission denied" in a (realy special) case: - /users/fmohr/ is mounted by the automounter - the directory is exported via a dfs/nfs gateway - StrictModes is set to yes it works if the mou...
2004 Nov 09
1
Solaris + PAM/LDAP + pubkey failing?
...7976]: [ID 800047 auth.debug] debug1: temporarily_use_uid: 999/1002 (e=0/0) Nov 9 10:00:07 sshserver sshd[27976]: [ID 800047 auth.debug] debug1: trying public key file /home/testuser/.ssh/authorized_keys2 Nov 9 10:00:07 sshserver sshd[27976]: [ID 800047 auth.debug] debug3: secure_filename: checking '/home/testuser/.ssh' Nov 9 10:00:07 sshserver sshd[27976]: [ID 800047 auth.debug] debug3: secure_filename: checking '/home/testuser' Nov 9 10:00:07 sshserver sshd[27976]: [ID 800047 auth.debug] debug3: secure_filename: terminating check at '/...