similar to: Strange problem with X11 forwarding...

Hello, Questions, observations, and curiosities. Maybe this is something stupid or maybe I'm doing something wrong... But... In light of the Kurt Seifried paper on SSH and SSL, I was looking for the finger prints on my various servers and known hosts files to have a little crib sheet and maybe plug the list into a database on my palm pilot. I found that ssh-keygen lists out the

OpenSSH mailing list, openssh-unix-dev at mindrot.org, added to Cc. On Tue, Jan 16, 2001 at 10:47:59AM -0500, Etienne Lebel wrote: > I try to install openssh-2.3.0p1/2.2.0p4 on a solaris 2.7 and I always got a > core dump with the ssh-keygen. But when I installed the 2.1.1p4 everything > was fine. Why ? That's funny... I can't even get it to compile on Solaris 2.7 with gcc

All, This may be a simple question, but I can't find the answer... The situation... Clint "C" connects to server "S". On server "S" I can find the client IP (IPv6) address in the SSH_CLIENT environment variable. I also need the client public key. On the client side, the public key ends up added to .ssh/known_hosts but what happens on the server side? I

Hello all! I didn't see anyone else reply to this, but I also didn't see anything show up on the OpenSSH development list (Cc'ed here). There is a patch call out right now for the pending release of 2.4.0. I'm wondering if anyone is aware of this and if it's already been covered in 2.4.0? Please reply to list and original poster... ----- Forwarded message

Hmmm... You guys aware of this project to incorporate Smart Cards into ssh-agent? I remember hearing about some stuff for OpenSSL, but I don't recall hearing about this on the OpenSSH list or on the Muscle list. This would be a really nice thing... :-) Mike -- Michael H. Warfield | (770) 985-6132 | mhw at WittsEnd.com (The Mad Wizard) | (678) 463-0932 |

Hey gang... An SMB server comparison article just showed up at Network Computing. http://www.networkcomputing.com/1104/1104f3.html They compare three SMB servers including Samba 2.0.6 and we took first place (barely). Zinged us on central administration. Compaq's SMB server has central configuration and administration of multiple servers, which they liked a lot, apparently. Mike --

In message <19991115105530.D12683 at alcove.wittsend.com>, "Michael H. Warfield" w rites: >Nov 15 10:45:38 alcove sshd[21731]: fatal: cipher_set_key: unknown cipher: 1 We do not use IDEA in OpenSSH anymore, it is patented in most countries. Your private key is encrypted with it, change the passphrase with the old ssh to nothing, then change the passphrase with OpenSSH to

>From THE INFOWORLD SCOOP: ============================================================================== MICROSOFT FINALLY PUBLISHES SECRET KERBEROS FORMAT Posted at Apr 28, 2000 04:17 PM MICROSOFT ON FRIDAY published a key proprietary data format that has been at the heart of interoperability questions surrounding "standards-based" Kerberos security in Windows 2000. The data

All, How can I get at the daily snapshots? When I go to the website, www.openssh.com, and follow the Linux link to portable.html and then go to request the daily snapshot from http://bass.directhit.com/openssh_snap/, I get prompted for a user id and password. Needless to say, I ain't got. That's real useful. Use to be, I could get the snapshots from the ftp site. Then things

This to announce a test release of 2.1.0p1 before making it widely available. This release includes many fixes to problems reported over the last week. In particular: - spurious error and coredumps caused by the inbuilt entropy gathering - RSAref detection - Compilation fixes for Solaris and others It also contains (completely untested) support for compiling without RSA support. This may be

I have been using OpenSSH for a while, and I would like to thank you for the great package. Here is a report of mysterious warning message lines, I get while I use OpenSSH. They don't seem to be serious, but annoying nevertheless. version: openssh-1.2.1pre27 OS Linux standard 2.2.14 #18 SMP Thu Jan 6 06:07:45 JST 2000 i586 unknown (compiled with gcc 2.95.2) Compiler gcc -v Reading

Log snippet: channel 10: istate 4 != open channel 10: ostate 64 != open channel 11: istate 4 != open channel 11: ostate 64 != open channel 12: istate 4 != open channel 12: ostate 64 != open channel 13: istate 4 != open channel 13: ostate 64 != open channel 14: istate 4 != open channel 14: ostate 64 != open channel 15: istate 4 != open channel 15: ostate 64 != open % ssh -V SSH Version

Markus, How's this patch? - a chan_wont_read()/chan_wont_write() API is added that is very much like chan_read_failed()/chan_write_failed(), but for the debug messages and chan_wont_*() don't ever call error() The 3.0.2p1 channel_pre_x11_open() uses chan_*_failed() but looks like it ought to use chan_wont_*() instead :) - forkoff() no longer fakes EOF for SSHv2 (still

Since the number of responses to my query was large, Roger has asked me to summarise the information. The summary is listed below Thanks to all the people who bothered to help me out: Alan Mead <adm@ipat.com> Beattie, Jay <JBeattie@accdir.com> Bruce Elrick <bruce.elrick@saltus.ab.ca> Christian Hammers <ch@lathspell.westend.com> David J. M. Karlsen

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thanks to Michael H. Warfield <mhw at wittsend.com> for reminding me of the need for upgrade instructions. The following text will be included in the UPGRADING file in the next release: Niels & Markus - have I missed anything? Feel free to adapt this for your own purposes if you so desire. Regards, Damien Miller - ---------- OpenSSH is

On Sun, 2011-09-18 at 16:52 -0400, Jennifer Buxton wrote: > Dear Samba Support, 1) This is not a support E-Mail address. This E-Mail address is for reporting security vulnerabilities in the Samba software. It is not for support. 2) For support issues, you may wish to take your question to the samba at samba.org list, where I have redirected this reply. 3) At first glace, looking at the

The Linux implementation of TCP sockets has a bug which causes shutdown(sock, SHUT_RD) to fail spuriously (ENOTCONN) if the write side of the socket has already been shut down. If you are using SSH port forwarding to tunnel HTTP through a firewall, nchan.c will tickle this bug once for every HTTP exchange. You will therefore get lots of useless, annoying error messages: channel 2:

rsync 2.5.6 security advisory ----------------------------- December 4th 2003 Background ---------- The rsync team has received evidence that a vulnerability in rsync was recently used in combination with a Linux kernel vulnerability to compromise the security of a public rsync server. While the forensic evidence we have is incomplete, we have pieced together the most likely way that this

rsync 2.5.6 security advisory ----------------------------- December 4th 2003 Background ---------- The rsync team has received evidence that a vulnerability in rsync was recently used in combination with a Linux kernel vulnerability to compromise the security of a public rsync server. While the forensic evidence we have is incomplete, we have pieced together the most likely way that this

> -----Original Message----- Damien Miller, 6/10/08 said: > > On Tue, 10 Jun 2008, Scott Neugroschl wrote: > > > I'm seeing something unusual in 5.0p1. Let me start by saying that > I'm > > on kind of an oddball > > system (HP NonStop). > > > > What I'm seeing is that at the end of an scp session, the server gets > > stuck in a