similar to: [PATCH] openssh 2.5.1p2 TIS authserv support

Hi, We at BalaBit IT Security Ltd developed a patch against openssh 2.3.0p1 to support TIS authserv authentication. TIS authserv uses a simple protocol, and supports CryptoCard, SKey, password etc. authentication. The commercial versions of SSH support this protocol, OpenSSH implemented SKey on its own using the protocol primitives originally invented for TIS authentication. Our patch is an

Transmit the locality in which the command was sent in the highest 3 bits of the 4 bytes prepended to each packet. Signed-off-by: Stefan Berger <stefanb@us.ibm.com> _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel

This patch adds a TIS device model compliant to the 1.2 TPM specification to Qemu. It implements all registers necessary to make the Linux TIS driver work (tpm_tis.c). All of the basic registers supported by this type of device are implemented. Also the locality selection has been implemented, but has not been tested. The legacy registers as described in the specification are not supported.

http://bugzilla.mindrot.org/show_bug.cgi?id=118 djm at mindrot.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED ------- Additional Comments From djm at mindrot.org 2003-05-14 10:28

Happy Holidays to all centos devs and users. -- The important thing is not to stop questioning. - Albert Einstein CentOS GNU/Linux 6.8 KDE 4.3.4 peace out. tc,hago. g . =+= Tired of having your microsoft os hacked? Change to Linux os, used by microsoft hackers. =+= If Bill Gates got a dime for every time Windows crashes... ...oh, wait. He does. THAT explains it! =+= in a world with out

When using the tis time series package (v1.9), I cannot select or alter a subset of a time series when the time series is created from a matrix and the matrix contains NA values. Example: x<-tis(t(c(1:10,NA)), start=c(2000,1), freq=12) x[x>0]<-0 The second line yields "Error in if (any(i > nrow(x))) { : missing value where TRUE/FALSE needed" However, both of the following

List, I am using the 'tisPlot' function in Jeff Hallman's excellent tis package and was hoping that someone could spare me from having to dig into the code of his 'tisPlot' function. So far as I can tell, the preferred method of controlling the plotting of the x-axis is using the 'xTickFreq' and 'xTickSkip' options. Unfortunately, the where the data ends

http://bugzilla.mindrot.org/show_bug.cgi?id=118 Summary: Implement TIS (protocol 1) via PAM Product: Portable OpenSSH Version: -current Platform: All OS/Version: All Status: NEW Severity: normal Priority: P3 Component: sshd AssignedTo: openssh-unix-dev at mindrot.org ReportedBy: fcusack at

I've been running ssh-clients-2.3.0p1-4 on RedHat 7.0 and upgraded to 2.5.1p2-1 yesterday from ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/rpm/SRPMS/. I noticed that 2.5.1p2-1 ssh-add won't look for id_dsa.pub by default -- if I have no identity file it just says "/home/klotz/.ssh/identity: No such file or directory" The 2.5.1p1-1 I got from RedHat's rawhide site

Hello, appended is a patch that makes it possible to use PAM both for password authentication and TIS (i.e. s/key or opie or any other interactive challenge/response scheme). I have developed this starting from the patch at http://www.debian.org/Bugs/db/61/61906.html on Debian with openssh-2.1.1p4-3. After configuring ssh with --with-pam-tis, there are two PAM services, "sshd" and

OpenSSH-2.5.2.p1 won't connect to OpenSSH-2.5.1p2 using version 2 protocol, quitting with the error message: [dunlap at tesla dunlap]$ ssh -2 kraken 7a 90 3f 39 37 67 0d 9e ac 43 74 c3 83 83 f5 a2 Disconnecting: Bad packet length 2056273721. tesla is Linux tesla.apl.washington.edu 2.2.16-3 #1 Mon Jun 19 19:11:44 EDT 2000 i686 unknown Intel RHL6.2 with OpenSSH-2.5.2.p1 compiled from sources

Hello, I just upgraded one machine (HP-UX 11.0) from 2.5.1p2 to 2.9p2 and found that a hendl at host_a# ssh host_b works fine with authentication agent and X11 forwarding on but a hendl at host_b# su root at host_b# /usr/bin/X11/xclock afterwards gives errors like debug: X11 connection uses different authentication protocol. debug: X11 rejected 0 i1/o16 ... debug: X11 connection to ...

The segfault logged below occurs on two different Red Hat 6.2 systems running OpenSSH installed from the 2.5.1p2 RPM. (Similar problems occured with the 2.5.1p1 RPM.) The most recent of the Red Hat 6.2 systems tested is stock except for an upgrade of rpm-3.0.5-9.6x.i386.rpm and the install of Red Hat's release of openssl-0.9.5a-3.i386.rpm, both necessary for the OpenSSH RPM install. The

I've been through the archive, and not found anything conclusive, except for a problem report of sorts from Theo E. Schlossnag (who has a set of patches for SecurID integration). I'm about to replace some ssh 1.2.26 (I know!) installations with OpenSSH 2.5.1p2, on Solaris 2.6 sparc boxes, and we use SecurID tokens for these boxes. I've compiled up OpenSSH 2.5.1p2 with --with-pam,

Suppose an SSH server has both RSA and DSA host keys for protocol 2, but I only have the DSA key, and I want to use that. I'm stuck; the OpenSSH client is hard-wired to offer both algorithms in the key exchange, and will select ssh-rsa if it's available (see myproposal.h, KEX_DEFAULT_PK_ALG). Below is a patch adding the client configuration option "PKAlgorithms" for this

nuqneH, I've tried using TIS authsrv authentication via bsd auth and found it quite limited. The most important restriction it does not log ip and fqdn of the remote peer, nor the application name, to the authentication server. It does not matter much for TIS authsrv, but since other applications do provide such information, our authsrv version uses it for extra authentication restrictions.

I installed 2.5.1p2 on an irix system and noticed that if a user logged in typed "logname" it was providing the wrong username. File creations were correct, "w" produces the correct output....so something is funky in p2 that wasn't there in p1.

Portable OpenSSH 2.5.1p2 has just been uploaded and will be making its way to the mirror sites (http://www.openssh.com/portable.html) in due course. This release contains primarily bug-fixes over 2.5.1p1 but an upgrade is recommended. Specific bug-fixes include: - Fixed endianess issue causing failues when usin Rijndael/AES cipher - Fix PAM failures on Solaris and Linux - Fix RPM spec file

Portable OpenSSH 2.5.1p2 has just been uploaded and will be making its way to the mirror sites (http://www.openssh.com/portable.html) in due course. This release contains primarily bug-fixes over 2.5.1p1 but an upgrade is recommended. Specific bug-fixes include: - Fixed endianess issue causing failues when usin Rijndael/AES cipher - Fix PAM failures on Solaris and Linux - Fix RPM spec file

Hi, There appears to be a bug in 2.5.1p2 that is not present on 2.3.0p1. The environment in question is Solaris, on either Intel or Sparc. The arrangement is as follows: System bar forwards a port from itself to system baz by doing su portfw -c 'ssh -2 -P -N -f -g -L 3333:baz:22 baz' System foo, which can talk to bar but not baz, initiates an ssh connection to bar port 3333, and is