search for: tcb

Displaying 20 results from an estimated 44 matches for "tcb".

Did you mean: tab
2005 Mar 07
2
dovecot patch for TCB auth
...t all and still authenticate on a DEC alpha running OSF1 [digital unix] V5.1 732, an authentication profile is maintained for each of them on the system. This user profile is kept in the protected password database, accessible only to trusted programs acting on behalf of the trusted computing base (TCB). Some TCB fields are useful to us so we're planning to use their LDAP attibute equivalents and we wrote a custom LDAP shema that includes those which were missing from the standard openLDAP distribution [see details below]. So we're planning (in fact are about to) patch dovecot-1.x in or...
2015 Apr 08
3
syslinux.efi with QEMU/OVMF
...to add debug messages to these functions and got the following: core_tcp_connect: connecting core_tcp_connect: connected core_tcp_connect: at out: closing CompletionToken core_tcp_write: Sending 227 bytes tcp transmit failed, Access Denied Meanwhile on the OVMF side I could get these debug logs: Tcb (3F296898) state TCP_CLOSED --> TCP_SYN_SENT TcpToSendData: set RTT measure sequence 464107706 for TCB 3F296898 Tcb (3F296898) state TCP_SYN_SENT --> TCP_ESTABLISHED TcpComputeRtt: new RTT for TCB 3F296898 computed SRTT: 0 RTTVAR: 0 RTO: 5 TcpInput: connection established for TCB 3F296898 in...
2002 Dec 19
1
OpenUsePrivilegeSeparation on Compaq V5.1A with C2/SIA Security
...a Compaq device V5.1A with C2 Security (SIA) configured. I must set UsePrivilegeSeparation to no to get this working. Does anyone have PrivilegeSeparation working on a Compaq device with C2 Security configured? Source device: ssh user at destination ( produces these errors) sshd: /var/tcb/files/__db_lock.share: Permission denied sshd: /var/tcb/files/__db_lock.share: Permission denied sshd: /var/tcb/files/__db_lock.share: Permission denied sshd: /var/tcb/files/__db_lock.share: Permission denied sshd: /var/tcb/files...
2000 Feb 26
1
OpenSSH on HP-UX 11 with TCB
Hi, an updated and more civilized post (to my one and only previous one) on getting OpenSSH to work on HP-UX 11 using the TCB. I used the HP ANSI C compiler. Firstly, I needed to download, compile and install OpenSSL, EGD and ZLib. Specific issues: configure did not handle hpux 11 login.c did not compile makefile did not use $(CFLAGS) sshd did not compile (pam issues), I wanted to use supplied pam library I use...
2000 Apr 24
2
OpenSSH 1.2.3, HPUX 10.20 [TCB]
Hello, already checked the Mailinglist archive for HPUX Problems, but havent found exact this: ./configure --prefix=/opt --without-pam --with-ssl-dir=/opt/OpenSSL --with-lastlog=/var/adm/wtmp --with-egd-pool=/dev/entropy --with-tcp-wrappers --with-pid-dir=/var/run --sysconfdir=/etc/ssh and get after a make: gcc -O2 -Wall
2016 Jan 25
5
[PPC] Linker fails on -fstack-protector
When -fstack-protector is turned on, linker fails to find the symbol "__stack_chk_guard" because at least for powerpc64le, glibc doesn't provide this symbol. Instead, they put the stack guard into TCB. x86 fixed this issue by injecting a special address space (which is later translated to TCB register access) and hard code the offset of stack_guard, but I don't see a easy way to handle address spaces in ppc. A cleaner solution could be adding an IR intrinsic llvm.get_tcb_address() and hard...
2016 Feb 22
4
[PPC] Linker fails on -fstack-protector
I found a bit weird to use address space for this, since the offset of getting stack_guard in TCB is, unfortunately, negative: https://github.com/gcc-mirror/gcc/blob/master/gcc/config/rs6000/linux64.h#L610 In my understanding an address space is referring to a segment register (-on powerpc 32bit; or SLB entry on powerpc 64bit?) with a non-negative offset...
2016 Feb 20
2
[PPC] Linker fails on -fstack-protector
...t; llvm-dev at lists.llvm.org> wrote: >> >>> When -fstack-protector is turned on, linker fails to find the symbol "__stack_chk_guard" >>> because at least for powerpc64le, glibc doesn't provide this symbol. >>> Instead, they put the stack guard into TCB. >>> >>> x86 fixed this issue by injecting a special address space (which is >>> later translated to TCB register access) and hard code the offset of >>> stack_guard, but I don't see a easy way to handle address spaces in ppc. >>> >> >> &...
2015 Apr 07
3
syslinux.efi with QEMU/OVMF
Hello, I'm trying to find out how to pxe boot with syslinux.efi on QEMU with OVMF. After getting through the initial hurdle caused by the iPXE based option ROM included with QEMU having a problem as described in these threads: http://www.syslinux.org/archives/2014-November/022804.html
2016 Feb 11
2
[PPC] Linker fails on -fstack-protector
...vm-dev at lists.llvm.org > wrote: > > When -fstack-protector is turned on, linker fails to find the > > symbol > > " __stack_chk_guard" because at least for powerpc64le, glibc > > doesn't > > provide this symbol. Instead, they put the stack guard into TCB. > > > x86 fixed this issue by injecting a special address space (which is > > later translated to TCB register access) and hard code the offset > > of > > stack_guard, but I don't see a easy way to handle address spaces in > > ppc. > Why is handling addre...
2015 Nov 24
3
Why isn't it possible to lower TCP values of running SSH session?
On Tue, Nov 24, 2015 at 12:57 AM, Damien Miller <djm at mindrot.org> wrote: > TCP is the kernel's responsibility. I guess that these values get > copied into each TCB from the copy managed via proc at connection > start time, but never updated afterwards. > This had to happen but the question is why is it possible to increase a timeout but not to decrease it. -- <wempwer at gmail.com>
2006 Sep 14
3
[PATCH] PermitRootLogin woes
...ell access to various unix based platforms for our students and university staff. Recently, there has been increasing number of root login attacks on one particular Tru64 machine running OpenSSH. The host is configured with "PermitRootLogin no" but every once in a while SIA auth with TCB enhanced security locks the root account. I suppose the problem could be solved at two separate levels, for SIA only in auth-sia.c, or for any password using auth method in auth-passwd.c. I'd prefer a fix just for auth-passwd.c, are there any reasons to try out auth_krb5_password, sshpam_au...
2006 Mar 15
0
HPUX - Trusted mode - Successful login time
We run HP-UX 11.00 in "Trusted Mode". This creates and mananges a tcb database for all the users on the system. I have created the attached patch, for openssh-4.3p2, to update the date/time of a successful login. I have tested this patch on several systems here, but I am sure there is a cleaner way to implement the updates into openssh. In a perfect world I woul...
1999 Jul 05
1
smbtar/smbclient and backups of NT
...0 bytes Didn't get entire file. size=2305, nread=0 2305 ( 57.7 kb/s) \usr\mail\Vanja\Attach\att13.eml ... And it goes on and on. On 350Mb of data, I get around 250 errors. Not to mention that 100 of those 250 are *critical* (for me) files :) I tried to modify the blocksize (using -Tcb <value> <filename>) but the only difference is that errors start happening earler or later. And always at same place, when using same blocksize. Does anybody know what could be the problem? Thanks in advance. Regards, Vanja Hrustic -- Siam Relay Ltd. http://www.siamrelay.c...
2016 Feb 23
2
[PPC] Linker fails on -fstack-protector
On Mon, Feb 22, 2016 at 3:32 PM Joerg Sonnenberger via llvm-dev < llvm-dev at lists.llvm.org> wrote: > On Mon, Jan 25, 2016 at 07:57:43PM +0000, Tim Shen via llvm-dev wrote: > > A cleaner solution could be adding an IR intrinsic llvm.get_tcb_address() > > and hard code the offset of stack_guard member, since they aren't > supposed > > to change. > > It would also be inefficient on architectures that can directly access > TLS variables. I.e. on x86, it is effectively a statically allocated TLS > variable w...
2005 Apr 28
0
Windows Server 2003 SP1 Issues (3.0.15pre2)
....168.0.255 nmask=255.255.255.0 Client started (version 3.0.15pre2). Connecting to 192.168.0.52 at port 445 Password: Doing spnego session setup (blob length=112) got OID=1 2 840 113554 1 2 2 got OID=1 2 840 48018 1 2 2 got OID=1 3 6 1 4 1 311 2 2 10 got principal=linux-test$@TCB.INTERNAL Got challenge flags: Got NTLMSSP neg_flags=0x60890215 NTLMSSP: Set final flags: Got NTLMSSP neg_flags=0x60080215 NTLMSSP Sign/Seal - Initialising with flags: Got NTLMSSP neg_flags=0x60080215 SPNEGO login failed: Logon failure session setup failed: NT_STATUS_LOGO...
2015 Nov 23
2
Why isn't it possible to lower TCP values of running SSH session?
I am running OpenSSH_6.7p1 on Slackware 14.1 x64. I haven't modified a stock config. On Linux TCP timeouts are controlled by these 3 files: $ cat /proc/sys/net/ipv4/tcp_keepalive_time \ > /proc/sys/net/ipv4/tcp_keepalive_intvl \ > /proc/sys/net/ipv4/tcp_keepalive_probes 7200 75 9 These are their default values. I modified
2003 Sep 02
12
[Bug 633] Password authentication fails in HP-UX trusted mode due to DISABLE_SHADOW
http://bugzilla.mindrot.org/show_bug.cgi?id=633 Summary: Password authentication fails in HP-UX trusted mode due to DISABLE_SHADOW Product: Portable OpenSSH Version: -current Platform: HPPA OS/Version: HP-UX Status: NEW Severity: normal Priority: P2 Component: sshd
2009 Mar 09
2
Where did the nv50 texture unit setup come from?
I'm especially interested in the original data that was used to derive the constant buffer arguments. I'm looking for the texture unit switch for tiling format, and i'm hoping the original data will easily reveal it. Maarten.
2004 Dec 02
1
Bug Report
To Whom It May Concern: I am running OpenSSH_3.7.1p2 on an HPUX 10.10 operating system. I recently converted my OS to a trusted system, which, among other things, shadows passwords in the /etc/passwd file. In order to shadow the user passwords, a '*' character is used. Unfortunately, the documentation for sshd states that, for HP operating systems, a '*' character in