similar to: Linux sshd dumps core unless client is insecure.

Hello, I'm new to the list, and I've been having a very weird problem with the IRIX version of portable openssh that I think may be a bug in this platform... I've looked through the FAQs and the man pages and can't find why this might not be working. The ssh binary is setuid-root, both ssh and sshd are told that Rhosts and RhostsRSA auth is OK in their config files, etc. I

Folks, the packets I want to place in an ogg stream are concatenations of two hunks of memory. Rather than memcopy() them into one then pass them to libogg, I patched framing.c to accept iovecs. The unified diff is 80 lines, minus the OS-specific stuff for defining struct ogg_iovec_t - pretty trivial. Is there any interest in it? Or is libogg frozen while all efforts are concentrated on

Hi. Does anyone use UsePrivilegedPort or have ssh(1) setuid, and if so for what use case? ssh(1) has had code in it to support installing setuid root since approximately forever, however OpenBSD has not shipped it in that configuration since 2002 (and I suspect these days no vendor does). As far as I can tell, all of the reasons for this no longer apply: - setuid root was needed to bind to a

The incoming (Class 5 switch to Asterisk PBX) side of a SIP trunk does not work unless I add "insecure=very" to my "Outgoing settings", but I don't want to do that. I do want to authenticate. Outgoing (Asterisk PBX to Class 5 switch) calls do authenticate and work. The Nortel CS 1500 I'm using as the PSTN-side of my SIP trunk has a username and password that it's

OpenSSH 2.9 has just been uploaded. It will be available from the mirrors listed at http://www.openssh.com/ shortly. OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support. This release contains many portability bug-fixes (listed in the ChangeLog) as well as several new features (listed below). We would like to thank the

OpenSSH 2.9 has just been uploaded. It will be available from the mirrors listed at http://www.openssh.com/ shortly. OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support. This release contains many portability bug-fixes (listed in the ChangeLog) as well as several new features (listed below). We would like to thank the

On Wed, Jan 03, 2007 at 03:47:38PM +1300, Andrew Donkin wrote: > My original plan was to store one RTP packet per ogg packet, one packet > per page, with the granule position of the page to the arrival time > of the RTP packet, and metadata in a custom format in the BOS packet. That's fine. SSRC as stream serialno? Note that by using arrival time as the granulepos you're making

Hello All, I have Polycom IP 500 phones which I would like to have message waiting indicators on. So far, I have my system running well but the problem I am seeing is that MWI doesn't seem to tell my phone that it should display a MWI state. The light does not show when you have message nor is there any indicator on the text lines of a message waiting. The wiki doesn't cover this

Hi, I tried to compile openssh-2.1.1p4 on a slackware 7.1 (and then on a slackware 7.0). you need to supply -lcrypt because otherwise auth-passwd.c line 135 calls the wrong crypt and sshd will never let you log in. (took a while to figure that out.) I tried './configure --with-libs crypt' but configure doesn't seem to understand me ;) checking host system type... Invalid

Hi, how can i disable the homedir? I have a Domain login configuration, but do not want server based profiles. After I add a workstation to the domain, the user profiles, created during the first login of a domain user, on that machine are always server based. Sure, I can change this profile to a local profile, but I think I can change this it in the samba configuration, that all profiles are

Hello, i read many many faq, docs, mailing lists archive, however smbclient command don't work with filenames/directories of a share(under win98) composed of accentued characters (i'm french, did you notice it with my english level :) ). my conf is: -OS: linux 2.4.17 with RH 7.1 -kernel option: CONFIG_SMB_NLS_DEFAULT=y CONFIG_SMB_NLS_REMOTE="cp850" (cp437 tried)

Hello everyone: I have downloaded, compiled (with winbind) and installed samba 2.2.3. I also have followed the directions on how to configure samba to allow authentication of users via winbindd off of a Win PDC. However, I am still unable to get the authentication to work at all. Below is some of my configuration: smb.conf: (partial) winbind separator = + winbind uid = 10000-20000

Hello all, Compiling 2.1.1p1 on my RedHat Linux 6.2 w/ 2.2.16 kernel seems to cause errors from the start.. ---- gcc -O2 -m486 -fno-strength-reduce -Wall -DETCDIR=\"/etc/ssh\" -DSSH_PROGRAM=\"/usr/bin/ssh\" -DSSH_ASKPASS_DEFAULT=\"/usr/libexec/ssh/ssh-askpass\" -DHAVE_CONFIG_H -c -o bsd-base64.o bsd-base64.c In file included from defines.h:261, from

Hello learned ogg folks, and welcome to 2007. Sadly I am back at work already, and I'd like to seek your advice. We need to store raw RTP packets on disk as they are received from the network. There will be multiple streams of media--at least one audio and one video--that all need to go in the same file. We have decided to use ogg because it is the simplest container format that meets our

openssh 2.1.1p1 Linux 2.2.16 (1) ssh(1) says there's a -k flag. Trying to use it gives prints out the usage message. openssh should support the "-k" flag for interoperability with ssh 1.2.27. (And the flag should be accepted whether or not kerberos support is actually present.) (2) DSA files seems to be poorly supported: ssh-keygen -l [-d] -f .ssh/id_dsa .ssh/id_dsa is

I've had these laying about for a while, can't remember whether I sent them before. diff -u openssh-2.1.1p1.orig/entropy.c openssh-2.1.1p1/entropy.c --- openssh-2.1.1p1.orig/entropy.c Wed Jun 7 08:20:23 2000 +++ openssh-2.1.1p1/entropy.c Thu Jun 15 13:58:25 2000 @@ -201,7 +201,9 @@ total_entropy_estimate += stir_gettimeofday(1.0); total_entropy_estimate +=

The attached patch adds support for array sessions, project id's, and system audit trail id. Arrays are available at least on UNICOS in addition to IRIX. The project id & audit stuff is IRIX specific. Otherwise, the IRIX support in the current OpenSSHp looks good. (There were some utmp/wtmp oddities, but I think they've gone away in the latest release.) -- Mike Stone --------------

The isdnlog program (provided by isdn4k-utils.tar.gz) creates a root-owned temp file called /tmp/isdnctrl (or /tmp/isdnctrl0) and no checking for symbolic links is done. The file is opened append only, a user can make a symbolic from /tmp/isdnctrl to any file and mess things up. example: ln -s /var/spool/mail/root /tmp/isdnctrl -- dentoir Fart Foundation Security through immaturity

A weird problem occurs (only on the prod server, not locally), when i try to register a new user with restful_authentication. Once in a while, i get the following error when trying to sign up as a new user: Insecure: can''t modify hash usr/lib/ruby/gems/1.8/gems/activerecord-2.2.2/lib/active_record/attribute_methods.rb:309:in `delete''

-----BEGIN PGP SIGNED MESSAGE----- With the recent remote root Wu-ftpd exploit based upon incorrect format string handling (processing user-supplied data as format strings), I've taken to scanning any code with elevated permissions for similar problems. I found one in the portable version of OpenSSH. Its only outputting messages passed back by PAM, I think, so I don't think its