similar to: [Bug 1041] Allow the admin to specify PAM service name

This patch adds a config file option 'PAMService' that sets the PAM service sshd will use. It should leave the current behavior unchanged if PAMService is not set in the config file (i.e. use __progname for the service or SSHD_PAM_SERVICE if it's set at compile time). The patch is against the current portability release in CVS. Why would you want something like this? I have a machine

Hi, I understand from earlier discussions that the reason dovecot doesn't support proxying of other SASL mechanisms than those which supply the plaintext password is that in general it would be possible to proxy any SASL mechanism since it might protect against man-in-the-middle attacks (which would prevent proxying). However, that has led to choice between letting users use PLAIN (or

It's sometimes desired to be able to alter login policy depending upon how the person was connecting for the ssh server. For example you might want different rules on the internal and external interface of a gateway. In another setup you might want an sshd with a different login policy running on a different port - and setup different firewalling rules (for example). I have implemented such

For whom asked me support for capi devices, that's here: http://www.junghanns.net/asterisk/ I'm using a AVM B1 card. also AVM passive card (FRITZ!PCI) works.... Then is you use SuSe all is configured by yast... Hello, probably is a feature what I'm asking for but because of my inexperience to asterisk this is my question: I've configured CAPI ISDN to receive calls. When I

Hello, I've found GlusterFS to be an interesting project. Not so much experience of it (although from similar usecases with DRBD+NFS setups) so I setup some testcase to try out failover and recovery. For this I have a setup with two glusterfs servers (each is a VM) and one client (also a VM). I'm using GlusterFS 3.4 btw. The servers manages a gluster volume created as: gluster volume

I've attached a patch relative to OpenSSH 2.5.1p1 which sets the default PAM service name to __progname instead of the hard-coded value "sshd". This allows you to have multiple invokations of sshd under different names, each with its own PAM configuration. Please let me know if you have any questions or problems. -- Mark D. Roth <roth at feep.net> http://www.feep.net/~roth/

Hello. Which pam service is sshd using on Solaris? Is it sshd? Thanks, Alexander Skwar -- Message from Our Sponsor on ttyTV at 13:58 ...

I am messing around with gluster management and I've added a couple bricks and did a rebalance, first fix-layout and then migrate data. When I do this I seem to get a lot of failures: gluster> volume rebalance MAIL status Node Rebalanced-files size scanned failures status --------- -----------

I append a patch against openssh-3.5p1.tar.gz which adds a config option PAMServiceName. The option allows one to specify the PAM service at runtime in the config file rather than using __progname or having it hardwired to SSHD_PAM_SERVICE at compile time. I expect this to be useful if one wants to run multiple instances of sshd using different PAM configurations. With this patch

When we installed OpenSSH 2.1.1p4 on our Solaris systems, our users noticed that it did not honor password expiration consistently with other Solaris login services. The patch below is against OpenSSH 2.2.0p1 and adds support for PAM password changes on expiration via pam_chauthtok(). A brief summary of changes: auth-pam.c: * change declaration of pamh to "static pam_handle_t *pamh",

Hello, Here's the situation I'm facing : I'm running OpenSSH on a server. On a gateway, I forward TCP:22 to the server TCP:22. So far, so good. I can log in from inside the lan by connecting using standard SSH port, or from the other network through the gateway. Now, I'd like a different configuration for connections from the outside. I start another SSHd on the

CentOS Errata and Bugfix Advisory 2016:0178 Upstream details at : https://rhn.redhat.com/errata/RHBA-2016-0178.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 41bcfe83e915dfe6408766d8c5d7d172fffab42e55c39f44ee7ded90ef9bbdfd cyrus-sasl-2.1.26-20.el7_2.i686.rpm

Greetings All. I want to do the following simple thing. I have defined a function med3x3() such that, given vectors X,Y, med3x3(X,Y) returns a 3x3 table where: Row 1: X > median(X) Row 2: X = median(X) Row 3: X < median(X) Col 1: Y < median(Y) Col 2: Y = median(Y) Col 3: Y > median(Y) (with intersections of these conditions for the individual cells). I can easily define fixed

Hi! I'm using samba 3.0.20b (in sarge). Today I note that smbstatus prints this warning message: 'WARNING: The "printer admin" option is deprecated' I use this option to set printer admin in each printable share I have in smb.conf. If "printer admin" is deprecated, what option replace it? printer admin is still valid? if yes, until version will support it? Thanks

Hi all, I''ve a routing problem. I''m setting up a router based on debian (kernel 2.4). I need to setup routing to export an ftp service (ftp server is in dmz) to 2 wan (both). I setup prerouting ad forward rule with no problem. The problem is that reply packet use default gateway (default wan) even though they are enter using the other wan. I solved it marking packets in input

hello! i have the following problem: i have a pc, which has one (eth0) NIC. eth0 is connected to two other linux machines acting as routers to the internet. i want to classify packets outgoing from my PC. i want to mark packets that are routed through 1. router with mark 1 and the others packets routed throuhg router 2. with mark 2. i had following ideas: -using destination MAC -using route

I am running rsync throuhg cygwin and trying to "mirror" two hard drives (hd1 -> hd2). HD1 have tons of hard links (I will say about 2 millions) because I do monthly backups and have about 13 folders and maybe about 150,000 files. Every month when I make a new snapshot I would also want to mirror HD1 to HD2. I tried running rsync -aH --progress -vv /cygdrive/d/ /cygdrive/e/ I though

http://bugzilla.mindrot.org/show_bug.cgi?id=740 ------- Additional Comments From dtucker at zip.com.au 2003-11-19 23:20 ------- According to the man page, pam_ldap doesn't support account management. $ man pam_ldap [snip] The pam_ldap.so.1 module supports two components: the Authentication component and the Password management com- ponent. ------- You are

https://bugzilla.mindrot.org/show_bug.cgi?id=2102 Bug ID: 2102 Summary: [PATCH] Specify PAM Service name in sshd_config Classification: Unclassified Product: Portable OpenSSH Version: 6.2p1 Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 Component: PAM support

Hello All, The attached patch allows openssh to specify which pam service name to authenticate users against by specifying the PAMServiceName attribute in the sshd_config file. Because the parameter can be included in the Match directive sections, it allows different authentication based on the Match directive. In our case, we use it to allow different levels of authentication based on the