search for: zugschlus

https://bugzilla.mindrot.org/show_bug.cgi?id=172 Sascha Silbe <sascha-openssh-bugs at silbe.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |sascha-openssh-bugs at silbe.o | |rg -- Configure

https://bugzilla.mindrot.org/show_bug.cgi?id=2635 Bug ID: 2635 Summary: Unable to use SSH Agent and user level PKCS11Provider configuration directive Product: Portable OpenSSH Version: 7.3p1 Hardware: Other OS: Linux Status: NEW Severity: normal Priority: P5

...roduct: Portable OpenSSH Version: 7.2p1 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: ssh Assignee: unassigned-bugs at mindrot.org Reporter: mh+openssh-bugzilla at zugschlus.de Hi, ssh -W should honor -4 and -b options given on the same command line. In practice, ssh -4 -W host:port will use IPv6 if host has an AAAA and an A record, and ssh -b valid.ipv4.address -W host:port will give "address family not supported" error if host has an AAAA and an A record...

Package: logtail Version: 1.2.68 Severity: normal Hi, logtail does not cleanly update from logtail2: $ sudo dpkg --install /var/cache/apt/archives/logtail_1.2.68_all.deb (Reading database ... 26564 files and directories currently installed.) Unpacking logtail (from .../logtail_1.2.68_all.deb) ... dpkg: error processing /var/cache/apt/archives/logtail_1.2.68_all.deb (--install): trying to

...uct: Portable OpenSSH Version: 5.8p1 Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: ssh-keygen AssignedTo: unassigned-bugs at mindrot.org ReportedBy: mh+openssh-bugzilla at zugschlus.de Hi, please allow ssh-keygen -l to read the key to be fingerprinted from standard input, so that it can be used in a pipe, like (simplified): grep 'matching rsa key found: ' syslog | ssh-keygen -l -f - Greetings Marc -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?...

...Product: Portable OpenSSH Version: 5.8p1 Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: sshd AssignedTo: unassigned-bugs at mindrot.org ReportedBy: mh+openssh-bugzilla at zugschlus.de Hi, please implement an option that will log the entire public key that has been accepted for login to syslog. That way, one can more easily find the key to remove it from .ssh/authorized_keys from a ~/.*rc file to implement a one-time-pad ssh key scheme. Greetings Marc -- Configure bugmai...

...Product: Portable OpenSSH Version: 5.8p1 Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: ssh AssignedTo: unassigned-bugs at mindrot.org ReportedBy: mh+openssh-bugzilla at zugschlus.de Hi, ssh-keyscan should read .ssh/config to allow being used with short hostnames ocnfigured in .ssh/config. Greetings Marc -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching the assignee of the bu...

...roduct: Portable OpenSSH Version: 5.2p1 Platform: Other OS/Version: Linux Status: NEW Severity: enhancement Priority: P2 Component: ssh AssignedTo: unassigned-bugs at mindrot.org ReportedBy: mh+openssh-bugzilla at zugschlus.de Hi, when one sends an ssh -MNf process to the background, it would be good to be able to kill it later without having to search for it in the process list. An option having it print its pid just before it backgrounds itself would be a great help. Greetings Marc -- Configure bugmail: https:...

Hi, my test host is running Debian/GNU Linux unstable and has virt-manger 0.9.5 and libvirt 1.2.1. I am using encryption and thus have devices in /dev/mapper that are not LVs, for example called /dev/mapper/myvirtualdisk. I'd like to configure libvirt in a way that allows me to directly assign such devices to a VM. This does not work when I create a filesystem directory storage pool in

On 2 January 2018 at 17:08, Marc Haber <mh+openssh-unix-dev at zugschlus.de> wrote: > On Tue, Jan 02, 2018 at 04:03:34PM +1030, David Newall wrote: >> On 02/01/18 03:29, Michael Str?der wrote: >> > How high is the risk that this unmaintained device is added to >> > yet-another-bot-net in the Internet-of-shitty-devices or is used to >>...

On 02/01/18 03:29, Michael Str?der wrote: > How high is the risk that this unmaintained device is added to > yet-another-bot-net in the Internet-of-shitty-devices or is used to > enter parts of your network. I think that is what is called a straw-man argument.? If a device can be compromised in the way you suggest, then I am sure it will be replaced, but it will be replaced because it

I would like to suggest adding a fallback in the event that somehow the sshd_config port number is invalid. Example: Port != (1<= or >=65535) By default fall by to port 22, and spit out an error. Same would go for if the new port is already in use, fall back to port 22 and spit out an error. Why is this a good idea? Would be a good idea because people are human and make mistakes, and you

...rsion: 3.0.9 Platform: All URL: http://lwn.net/Articles/400489/ OS/Version: Linux Status: NEW Severity: enhancement Priority: P5 Component: core AssignedTo: wayned at samba.org ReportedBy: mh+samba-bugzilla at zugschlus.de QAContact: rsync-qa at samba.org Hi, rsync is quite slow when compared to cp while copying from a local disk to another local disk. rsync is not made for that situation, but still a common use case. On linux, this setup misleads CPU frequency governors which causes CPUs to reduce the...

Dear developer, This issue may be not related to openssh but I am not sure. So post it here for some luck. The issue is like this:(you can see more formatted description at (https://serverfault.com/questions/878504/can-only-ssh-unidirectional) I have two centos 7.2 server. One machine ip is 10.104.196.18, another machine is 10.240.197.21. I can successfully ssh from 10.104.196.18 to

Hi, I would like to run a network firewall as a VM on a KVM host. There are ~ 25 VLANs delivered to the KVM host on three dedicated links, no LACP or other things. I have the VLANs 100-180 on the host's enp1s0, the VLANs 200-280 on the host's enp2s0 and the VLANs 300-380 on the host's enp3s0. To save myself from configuring all VLANs on the KVM host, I'd like to hand the entire

On Mon, Oct 03, 2016 at 08:33:30PM +0100, Rowland Penny via samba wrote: > OK, then follow Sven's advice, install debian and then follow just > about any standalone server howto, any problems or questions, just ask. That's what I'm going to do. Thanks for the advice! Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber

Hi, Here is a new wording for the "Exim4 on Debian" part of the web page on http://wiki.dovecot.org/VirtualhostingWithExim. It's immutable, so I cannot directly change it. I e-mailed Florian, but he cannot log in to the wiki any more. Can somebody with appropriate privileges change the page? --------------------- If you are using the exim4 packages on Debian, you need to pay

Hi, I have dovecot 1.0rc15 on Debian and would like to allow plaintext auth not only from the local IP address but from the entire local network, but not from everywhere. Is that configurable? I am looking for something like "allow_plaintext_auth = 10.8.0.0/24". Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber |

Hi, in port knocking setups, it would be great to have the possibility to execute a shell command before the ssh connection is actually initiated. That way, one could configure ssh like host foo hostname foo.bar.example user baz pre-connect knock foo.bar.example 1234 5678 and transparently initiate the connection by saying ssh foo. ssh would then first invoke the knock process and then initiate

Hi, for a test lab, I'm trying to write a small shell script that will eradicate all information regarding a special host from the known_hosts file. Unfortunately, it is quite non-trivial to find out what ssh doesn't like with a host. ssh says which line in known_hosts has the offending key, but ssh-keygen -R doesn't take a line number. Am I using an undocumented interface when I