similar to: login.conf MAIL environment weirdness solved

This message is reporting 2 possible bugs: a possible problem with sshd from OpenSSH 2.2 on FreeBSD 4.2, and a possible security hole in FreeBSD's boot process (??) I am not an expert on these kinds of issues and therefore do not have the knowledge necessary to trace the origins of the problem to the extent that would probably be helpful. Nevertheless, here goes: Here is the physical

behavior, and I should be able to override it by using the [global] config option client code page = 437 However, this seems to have no effect whatsoever. I still get the graphical box characters, even after stopping and restarting the server. I tried going into the Win2K Regional Options control panel and playing with the default system locale, but even if I make this English(UK), it

-- | "Bombay is 250ms from New York in the new world order" - Alan Cox | Damien Miller - http://www.mindrot.org/ | Email: djm at mindrot.org (home) -or- djm at ibs.com.au (work) ---------- Forwarded message ---------- Date: Fri, 9 Jun 2000 17:06:30 +0200 From: Markus Friedl <markus.friedl at informatik.uni-erlangen.de> To: BUGTRAQ at SECURITYFOCUS.COM, misc at openbsd.org,

OpenSSH's UseLogin option allows remote access with root privilege. 1. Systems affected: The default installation of OpenSSH is not vulnerable, since UseLogin defaults to 'no'. However, if UseLogin is enabled, all versions of OpenSSH prior to 2.1.1 are affected. 2. Description: If the UseLogin option is enabled the OpenSSH server (sshd)

Hi, I'm still hoping that some-one can offer a solution to this issue.... Anyone? > I've got the following issue, which I'm unable to resolve by > myself. Hopefully, someone on the list will be able to guide > me, or provide more information towards resolving this. > > We've compiled OpenSSH v3.7.1p1 (which I know is not the most > recent version) on

We're trying to build OpenSSH 3.0.2p1 for Solaris 8 (among others) and are running into a problem with UseLogin and utmpx. If we set "UseLogin no" then we can login okay. finger or who won't find us, even with a TTY allocated altough "who /etc/wtmpx" will find us. But the real problem is if we set "UseLogin true" which we must do for BSM support on some

Greetings, In order to use solaris's BSM (Basic security module) also called c2 audit, which logs specific kernel calls depending on your audit_control, I would need to use login(1) to log users exec calls and whatnot because Portable OpenSSH does not have <bsm/audit.h> support, now that would mean I would have to enable Uselogin in sshd_config in order for that to work. I am running

Hi, I am not sure this is a bug in Openssh or not. I am running Openssh 4.1p1. with openssl 0.9.7g Scenario: Due to audit enabled on the system, I will need to set Uselogin to yes so that audit will track system call. But when try to login to system with a LDAP user. I get the following. eg: [n113839 at r3ent15pc ~]$ ssh tfstst1 -l ntesting1 ntesting1 at tfstst1's password: Login incorrect

Attached is the latest version of my UseLogin patch that makes "UseLogin true" work on Solaris and UNICOS. As usual, I have provided configure.in changes that set the appropriate defines for Solaris, but I have not provided the configure.in changes for UNICOS (since they would be incomplete, and Wendy is working on this). This version fixes a problem with the last-login time always

http://bugzilla.mindrot.org/show_bug.cgi?id=255 Summary: You must "exec" login from the lowest login shell. Product: Portable OpenSSH Version: -current Platform: PPC OS/Version: AIX Status: NEW Severity: normal Priority: P2 Component: sshd AssignedTo: openssh-unix-dev at mindrot.org

Hi, I've got the following issue, which I'm unable to resolve by myself. Hopefully, someone on the list will be able to guide me, or provide more information towards resolving this. We've compiled OpenSSH v3.7.1p1 (which I know is not the most recent version) on Solaris 8 SPARC, and have noticed that when the "UseLogin=yes" parameter is set in the sshd_config file, the

When i use openssh's UseLogin option (i.e. set it to "Yes").. i get duplicate entries in the wtmp file (when i type 'last' it displays users who logged on via sshd twice), like this: tempest ttyp4 63.10.229.126 Sat Mar 11 22:33 - 14:03 (15:29) tempest ttyp4 1cust126.tnt5.ta Sat Mar 11 22:33 still logged in note however that this is AFTER a user

We have a system on which users are given a very restricted environment (their shell is a menu) where they should not be able to run arbitrary commands. However, because their shell is not statically linked, ld.so provides a nice clutch of holes for them to exploit. The patch below adds a new configuration option to sshd which quashes their attempts to set LD_PRELOAD etc. using ~/.ssh/environment

Solar flares and aliens, mostly. Also I was joking to demonstrate the absurdity. I verified Ben's hypothesis, it is using VERBATIM. On Fri, Mar 9, 2012 at 4:24 PM, Mark Rudholm <mark at rudholm.com> wrote: > Can you explain exactly how transferring a WAV file from one drive to > another results in degradation of audio quality? > > And what are the "inherent defects of

Please excuse me for mailing you directly instead of using the 'sendbug' facility; it seems to be an OpenBSD-only facility, and I didn't see a bug-tracking interface on the web site. I know the "UseLogin" feature is deprecated (to some degree, at any rate), however, on a Red Hat 6.2-based system, it is broken, because ssh.h statically defines LOGIN_PROGRAM as /usr/bin/login,

Is it possible to configure sshd (version 3.7.1p2, in my case) to log all failed login attempts? I've messed around with various syslog.conf settings and I've modified the sshd_config file to "UseLogin yes", assuming this may be required in order to leverage the /etc/default/login settings used by telnet. Nothing has worked, so far. For auditing purposes, I've been asked

Hi. New (2.1.1p1) login code is nicer on AIX (4.2.1.0.06). Thanks. A couple of issues, though, which I haven't really dug into yet. I'm wondering if anyone else has seen them? If not, I'll investigate & report. 1. If I set "UseLogin" to "yes", everything seems fine except that the authentication agent forwarding doesn't work. The "SSH"

I have posted my problem on the link below, but didn't get any answer. I am hoping someone here can help me with this issue. Here's my problem: I am using H323 to talk between Asterisk and Avaya IP Office 500. For some strange reason, when we are talking on a VoIP call, we get disconnected after 10+ minutes. We have two other Elastix box, but none of them are getting disconnected. From

We recently switched to OpenSSH from ssh 1.2.x and I quickly noticed that /etc/environment processing has gone AWOL. This patch adds a new sshd_config variable: SysEnvFile Specifies a file containing the system-wide default environment in ``VARNAME=value'' format (default is none.) The contents of a user's $HOME/.ssh/environment file, if

Hello, I tried UseLogin, because ssh does not seem to propagate the tty controlling characters from the local to the remote tty and the login(1) on my system offers a config file to set them. Unfortunately, when using UseLogin, sshd does not run xauth. I can only guess that it does so, because it would have to drop privileges for doing so, but that makes UseLogin about useless. I am not