Displaying 20 results from an estimated 1100 matches similar to: "Linux sshd dumps core unless client is insecure."
2002 Jan 09
0
IRIX 6.5 RhostsRSA problems
Hello,
I'm new to the list, and I've been having a very weird problem with the IRIX
version of portable openssh that I think may be a bug in this platform...
I've looked through the FAQs and the man pages and can't find why this might
not be working. The ssh binary is setuid-root, both ssh and sshd are told
that Rhosts and RhostsRSA auth is OK in their config files, etc. I
2007 Jan 11
2
Vectored I/O for libogg
Folks, the packets I want to place in an ogg stream are concatenations
of two hunks of memory. Rather than memcopy() them into one then pass
them to libogg, I patched framing.c to accept iovecs.
The unified diff is 80 lines, minus the OS-specific stuff for defining
struct ogg_iovec_t - pretty trivial.
Is there any interest in it? Or is libogg frozen while all efforts are
concentrated on
2018 Jul 06
2
Does anyone use UsePrivilegedPort=yes or setuid ssh(1) ?
Hi.
Does anyone use UsePrivilegedPort or have ssh(1) setuid, and if so for
what use case?
ssh(1) has had code in it to support installing setuid root since
approximately forever, however OpenBSD has not shipped it in that
configuration since 2002 (and I suspect these days no vendor does).
As far as I can tell, all of the reasons for this no longer apply:
- setuid root was needed to bind to a
2009 Jan 06
3
Incoming side of SIP trunk does not work unless I add "insecure=very"
The incoming (Class 5 switch to Asterisk PBX) side of a SIP trunk does not
work unless I add "insecure=very" to my "Outgoing settings", but I don't
want to do that. I do want to authenticate. Outgoing (Asterisk PBX to
Class 5 switch) calls do authenticate and work.
The Nortel CS 1500 I'm using as the PSTN-side of my SIP trunk has a username
and password that it's
2001 May 02
1
OpenSSH 2.9
OpenSSH 2.9 has just been uploaded. It will be available from the
mirrors listed at http://www.openssh.com/ shortly.
OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0
implementation and includes sftp client and server support.
This release contains many portability bug-fixes (listed in the
ChangeLog) as well as several new features (listed below).
We would like to thank the
2001 May 02
1
OpenSSH 2.9
OpenSSH 2.9 has just been uploaded. It will be available from the
mirrors listed at http://www.openssh.com/ shortly.
OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0
implementation and includes sftp client and server support.
This release contains many portability bug-fixes (listed in the
ChangeLog) as well as several new features (listed below).
We would like to thank the
2007 Jan 02
0
Storing RTP in Ogg
On Wed, Jan 03, 2007 at 03:47:38PM +1300, Andrew Donkin wrote:
> My original plan was to store one RTP packet per ogg packet, one packet
> per page, with the granule position of the page to the arrival time
> of the RTP packet, and metadata in a custom format in the BOS packet.
That's fine. SSRC as stream serialno?
Note that by using arrival time as the granulepos you're making
2004 Aug 10
3
Polycom IP 500 - MWI Not Working
Hello All,
I have Polycom IP 500 phones which I would like to have message waiting
indicators on. So far, I have my system running well but the problem I
am seeing is that MWI doesn't seem to tell my phone that it should
display a MWI state. The light does not show when you have message nor
is there any indicator on the text lines of a message waiting. The wiki
doesn't cover this
2000 Aug 06
1
problems compiling sshd on slackware 7.x
Hi,
I tried to compile openssh-2.1.1p4 on a slackware 7.1 (and then on a
slackware 7.0). you need to supply -lcrypt because otherwise
auth-passwd.c line 135 calls the wrong crypt and sshd will never let
you log in. (took a while to figure that out.)
I tried './configure --with-libs crypt' but
configure doesn't seem to understand me ;)
checking host system type... Invalid
2002 Feb 28
2
how to disable homedirs?
Hi,
how can i disable the homedir?
I have a Domain login configuration, but do not want server based
profiles. After I add a workstation to the domain, the user profiles,
created during the first login of a domain user, on that machine are
always server based. Sure, I can change this profile to a local profile,
but I think I can change this it in the samba configuration, that all
profiles are
2002 Mar 04
1
What's wrong with accentued filenames in 2.2.3a????
Hello,
i read many many faq, docs, mailing lists archive, however smbclient
command don't work with filenames/directories of a share(under win98)
composed of accentued characters (i'm french, did you notice it with my
english level :) ).
my conf is:
-OS: linux 2.4.17 with RH 7.1
-kernel option:
CONFIG_SMB_NLS_DEFAULT=y
CONFIG_SMB_NLS_REMOTE="cp850" (cp437 tried)
2002 Feb 21
1
Authenticaton problems using winbindd
Hello everyone:
I have downloaded, compiled (with winbind) and installed samba 2.2.3.
I also have followed the directions on how to configure samba to allow
authentication of users via winbindd off of a Win PDC. However, I am still
unable to get the authentication to work at all. Below is some of my
configuration:
smb.conf: (partial)
winbind separator = +
winbind uid = 10000-20000
2000 Jun 09
2
openssh-2.1.1p1 RH62 compile failure
Hello all,
Compiling 2.1.1p1 on my RedHat Linux 6.2 w/ 2.2.16 kernel seems to cause
errors from the start..
----
gcc -O2 -m486 -fno-strength-reduce -Wall -DETCDIR=\"/etc/ssh\" -DSSH_PROGRAM=\"/usr/bin/ssh\" -DSSH_ASKPASS_DEFAULT=\"/usr/libexec/ssh/ssh-askpass\" -DHAVE_CONFIG_H -c -o bsd-base64.o bsd-base64.c
In file included from defines.h:261,
from
2007 Jan 02
2
Storing RTP in Ogg
Hello learned ogg folks, and welcome to 2007. Sadly I am back at work
already, and I'd like to seek your advice.
We need to store raw RTP packets on disk as they are received from the
network. There will be multiple streams of media--at least one audio
and one video--that all need to go in the same file. We have decided to
use ogg because it is the simplest container format that meets our
2000 Jun 11
0
Some missing features?
openssh 2.1.1p1 Linux 2.2.16
(1) ssh(1) says there's a -k flag. Trying to use it gives prints out the
usage message. openssh should support the "-k" flag for interoperability
with ssh 1.2.27. (And the flag should be accepted whether or not kerberos
support is actually present.)
(2) DSA files seems to be poorly supported:
ssh-keygen -l [-d] -f .ssh/id_dsa
.ssh/id_dsa is
2000 Nov 02
2
misc. minor patches
I've had these laying about for a while, can't remember whether I sent
them before.
diff -u openssh-2.1.1p1.orig/entropy.c openssh-2.1.1p1/entropy.c
--- openssh-2.1.1p1.orig/entropy.c Wed Jun 7 08:20:23 2000
+++ openssh-2.1.1p1/entropy.c Thu Jun 15 13:58:25 2000
@@ -201,7 +201,9 @@
total_entropy_estimate += stir_gettimeofday(1.0);
total_entropy_estimate +=
2000 Jun 21
0
IRIX patches
The attached patch adds support for array sessions, project id's, and
system audit trail id. Arrays are available at least on UNICOS in
addition to IRIX. The project id & audit stuff is IRIX specific.
Otherwise, the IRIX support in the current OpenSSHp looks good. (There
were some utmp/wtmp oddities, but I think they've gone away in the
latest release.)
--
Mike Stone
--------------
1998 Oct 21
0
Insecure /tmp handling in isdnlog
The isdnlog program (provided by isdn4k-utils.tar.gz) creates a
root-owned temp file called /tmp/isdnctrl (or /tmp/isdnctrl0) and
no checking for symbolic links is done. The file is opened append only,
a user can make a symbolic from /tmp/isdnctrl to any file and mess
things up.
example: ln -s /var/spool/mail/root /tmp/isdnctrl
-- dentoir
Fart Foundation
Security through immaturity
2008 Dec 15
0
insecure: can't modify hash
A weird problem occurs (only on the prod server, not locally), when i
try to register a new user with restful_authentication.
Once in a while, i get the following error when trying to sign up as a
new user:
Insecure: can''t modify hash
usr/lib/ruby/gems/1.8/gems/activerecord-2.2.2/lib/active_record/attribute_methods.rb:309:in
`delete''
2000 Jul 07
1
Potentially insecure format string handling in PAM support
-----BEGIN PGP SIGNED MESSAGE-----
With the recent remote root Wu-ftpd exploit based upon incorrect format
string handling (processing user-supplied data as format strings), I've
taken to scanning any code with elevated permissions for similar problems.
I found one in the portable version of OpenSSH. Its only outputting
messages passed back by PAM, I think, so I don't think its