similar to: [Bug 1377] New: getpwuid called twice without pwcopy (percent_expand: NULL replacement)

Hi, getpwuid is called as seen in the patch, and is then called again indirectly by tilde_expand_filename without first copying off the results from the first call. This is fatal on MacOSX (and it would seem it should be fatal elsewhere, too). Please CC me in replies; I'm not a subscriber. --- openssh-4.4p1/ssh.c 2006-09-01 22:32:40.000000000 -0700 +++ openssh-4.4p1-fix/ssh.c

Hi, Not sure if this anyone else is interested in this but to me it seems to make sense to use different control session multiplexer sockets for bulk and interactive workloads. Index: auth.c =================================================================== RCS file: /cvs/src/usr.bin/ssh/auth.c,v retrieving revision 1.94 diff -u -p -r1.94 auth.c --- auth.c 23 May 2011 03:33:38 -0000 1.94 +++

https://bugzilla.mindrot.org/show_bug.cgi?id=1562 Summary: EXPAND_MAX_KEYS in percent_expand is actually (EXPAND_MAX_KEYS - 1) Product: Portable OpenSSH Version: 5.2p1 Platform: Other OS/Version: Solaris Status: NEW Severity: minor Priority: P4 Component: Miscellaneous

Hi, the attached patch is very important for Cygwin. I don't know how I could have missed that for months now :-( I hope this can be included in 2.5.1p2. The pw_gecos field in Cygwin's /etc/passwd contains Windows specific authentication informations which let NT domain users logon to a machine without the need to inform the logon server (sshd in our case) about the name of the NT

Hello, I've noticed that ssh always opens /etc/passwd on my Linux box before parsing command line options, and so the file is opened even if the user is afterward presented with the usage and the program ends. So, this snippet in OpenSSH-4.2p1, ssh.c: 219 /* Get user data. */ pw = getpwuid(original_real_uid); if (!pw) { logit("You don't exist, go away!"); exit(1);

I've implemented a patch to openssh which allows the PAM auth layer to detect if the PAM stack has changed the user name and then adjusts its internal data structures accordingly. (imagine a PAM stack that uses individual credentials to authenticate, but assigns the user to a role account). First, is the openssh community interested in this patch? Second, if there is interest in the patch,

Hi, I''m running into something along the lines of bug 5383. I''m hoping I''m doing something obviously wrong and that someone can point me in the right direction. I''ve got a custom paint event handler: def on_paint puts "mainframe on_paint" paint do |dc| dc.clear @cl.draw dc end end Then I''ve got a key press

The references to pw_expire and pw_change in pwcopy() in misc.c cause compilation errors at least on solaris. How about doing a memcpy of the whole structure and only explicitly setting those that need xstrdup? That would work on openbsd and everywhere else. - Dave Dykstra --- misc.c.O Thu Jun 21 11:35:28 2001 +++ misc.c Thu Jun 21 11:36:09 2001 @@ -125,14 +125,10 @@ { struct passwd *copy =

Gives GSSAPI-MIC the same options capability currently provided for public key logins by the AuthorizedKeysFile. Uses krb5_principal_match() to support widcard matches. Uses percent_expand() to expand tokens for: credential USER[/INSTANCE]@REALM homedir /home/user username user cred name USER cred instance INSTANCE cred realm REALM My intended application: # cat

The following are patches against openssh 2.1.1p4 to add support for the BSD_AUTH authentication mechanisms. It allows the use of non-challenge/response style mechanisms (which styles are allowed my be limited by appropriate auth-ssh entries in login.conf). The patches also add support for calling setusercontext for the appropriate class when called with a command (so that the PATH, limits,

This allows the localhost percent-style escapes in arguments to the Include directive. These are useful for including host-specific ssh configuration. --- readconf.c | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) diff --git a/readconf.c b/readconf.c index a2282b562df0..ad47d0e9730a 100644 --- a/readconf.c +++ b/readconf.c @@ -1030,7 +1030,8 @@

On Mon, 17 Aug 2015, Todd C. Miller wrote: > I like the idea but tilde_expand_filename() calls fatal() if it > cannot resolve ~foo. This is not terrible when using -L and -R on > the normal command line but it seems pretty harsh to exit when -L > or -R are used via the ~C escape or the streamlocal-forward at openssh.com > request. > Message-Id: <aea6cdc1d1b42d07 at

http://bugzilla.mindrot.org/show_bug.cgi?id=1353 Summary: Bugs intended to be fixed in 4.8 Product: Portable OpenSSH Version: -current Platform: All OS/Version: All Status: NEW Keywords: meta Severity: normal Priority: P2 Component: Miscellaneous AssignedTo: bitbucket at mindrot.org

In our native Win2K3 AD domain, several AD accounts have a sIDHistory that carry SIDs from before the AD domain migration in addition to the "primary" objectSID. Samba 3.0.21c winbindd (with idmap OpenLDAP backend) on domain member servers (running SuSE 9.3 Pro) allocates multiple uids for these SIDs with the same (AD) user name: Primary SID: # getent passwd myuser

https://bugzilla.mindrot.org/show_bug.cgi?id=1414 Summary: Botched getpwuid usage on Mac OS X Classification: Unclassified Product: Portable OpenSSH Version: 4.7p1 Platform: Other OS/Version: Mac OS X Status: NEW Severity: normal Priority: P2 Component: ssh AssignedTo: bitbucket at mindrot.org

I provisioned by 2 way: - as standalone server and in the way I launched nmbd, smbd and winbind => error "getpwuid(3000007) failed" is got and shares are inaccessible; - as DC and in the way I launched samba daemon, which started in its own smbd and winbindd daemons => there wasn' t theerror and shares are available. > Have you provisioned Samba as an AD DC ? > If you

Hello, after I wasn''t able to install wxruby via gem (404) I downloaded the file from rubyforge and installed it on my intel mac. No failure the so I tried to start the minimal.rb with ruby -r/r?/ ubegems <path>... This didn''t work so I tried to do it in irb but the same error occured: irb(main):001:0> require ''rubygems'' => true

http://bugzilla.mindrot.org/show_bug.cgi?id=1235 Summary: [PATCH] scp does unnecessary getpwuid(), breaking chroot Product: Portable OpenSSH Version: -current Platform: Other OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: scp AssignedTo: bitbucket at mindrot.org

Hi all. Recently I built from tarball sources 436 version of Samba4 at Ubuntu 14.04 x64. There wasn' t any Samba at the server before. All started successfully, but in 'standalone server' mode, while accessing to shares, error 'getpwuid(3000007) failed' is appeared as was here https://lists.samba.org/archive/samba/2014-May/181010.html. And it is impossible to open it even

Sorry. But my gmail account ... 2016-03-14 22:34 GMT+03:00 CpServiceSPb . <cpservicespb at gmail.com>: > I provisioned by 2 way: > - as standalone server and in the way I launched nmbd, smbd and winbind => > error "getpwuid(3000007) failed" is got and shares are inaccessible; > - as DC and in the way I launched samba daemon, which started in its own > smbd and