search for: unpassword

...r private keys with passwords.? -------- Original message -------- From: Dan Kaminsky <dan at doxpara.com> Date: 05/23/2013 5:39 PM (GMT-08:00) To: "Dan Mahoney, System Admin" <danm at prime.gushi.org> Cc: openssh-unix-dev at mindrot.org Subject: Re: Utility to scan for unpassworded SSH privkeys? Effectively nobody passphrases their ssh keys.? They're used as a way to *suppress* password entry in the real world -- use this, and things just work rather than poking you each time. Sent from my iPhone On May 23, 2013, at 5:19 PM, "Dan Mahoney, System Admin" &l...

Hey all, Let's make an assumption: 1) I am a root user on a system. 2) I don't want said system being used as a jumping-off point if either a user account or the root account is compromised. Given an unencrypted private key, plus a known_hosts file, plus bash_history, it's a pretty easy avenue of attack once you're in the front door. And it's happened before*. Thus,

...ines which I have an account on which was recently compromised. the machines have thousands of users and the only access is via ssh. via some mechanism (probably a weak password) the attacker was able to compromise a single account and use a local-root exploit to hijack lots of ssh-agents and any unpassword protected keys. they next tried to repeat the process for every machine in the 'known_hosts' file for each compromised account. of course, all this was automated and they quickly built a nice spanning tree of cracked machines. (fortunately, I was paranoid enough to avoid being hit, but ma...

I try to set up a Samba4-based Fileserver in an Samba3-DC enviroment. Filesystem is ext4, CIFS + NFS4 should be provided. The same ACLs should be used over both protocols. With Samba 3 this was possible (using POSIX 1003.1e DRAFT 17 ACLs only) . How can I do the same with Samba 4 ? Posix-ACLs set on the server with setfacl are recogniced on a windows-client. But every change I do on a

...as part of the backup procedure he already has running on his server. I am just guessing here, but I am sure that someone will correct me if I am wrong... You will need to create a share on each PC (say the C:\My Documents folder), with password access (please DON'T let your users set up UNpassworded shares!). If you are running NT or 2K, I guess you could access it with administrator privs, and access the C$ administrative share. The other day someone here on the list said that with W2k you can map just a folder buried within the share, but how would that work?!? (Sounds like a securi...