Displaying 20 results from an estimated 1000 matches similar to: "[Bug 81] New: ssh cannot use ssh-askspass & passphrases as documented"
2003 Nov 27
2
Question about adding another parameter for OpenSSH
Hello,
I need to allow for some people to execute ssh with one shared private
key for remote executing command on various machines. However, it is not
possible to set group permissions for private keys and it is possible
to have just one private key file for one user. Please, is it possible
to add patches into openssh development tree like these, so that standard
behavior of ssh is not changed,
2004 Apr 12
1
Regarding SSH_ASKPASS
I've been giving SSH_ASKPASS a hard look, and it's not clear to
me how it's supposed to work. The documentation (ssh.1) seems
explicit enough:
SSH_ASKPASS
If ssh needs a passphrase, it will read the passphrase from the
current terminal if it was run from a terminal. If ssh does not
have a terminal associated with it but DISPLAY and SSH_ASKPASS
are set, it will execute
2002 Jan 25
2
[Bug 81] ssh cannot use ssh-askspass & passphrases as documented
http://bugzilla.mindrot.org/show_bug.cgi?id=81
djm at mindrot.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |WORKSFORME
------- Additional Comments From djm at mindrot.org 2002-01-26 10:07
2000 Sep 09
0
2.2.0p1 PATCH: ssh/scp/slogin will invoke ssh-askpass
Enclosed is a patch against 2.2.0p1 that teaches ssh (and therefore
slogin and scp) how to invoke ssh-askpass to request a password,
RSA/DSA key passphrase, or an skey challenge response.
I've tested this on Linux (i386), for passwords and RSA/DSA key
passphrases. I cannot easily test whether the Right Thing will happen
for skey challenge responses; I would appreciate it if someone who
uses
2002 Feb 15
0
[Bug 118] New: Implement TIS (protocol 1) via PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=118
Summary: Implement TIS (protocol 1) via PAM
Product: Portable OpenSSH
Version: -current
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P3
Component: sshd
AssignedTo: openssh-unix-dev at mindrot.org
ReportedBy: fcusack at
2004 Oct 03
3
[PATCH] PreferAskpass in ssh_config
Moin,
attached is a patch, which adds a new configuration option
"PreferAskpass" to the ssh config.
ssh{,-add,-keygen,-agent} will use ssh-askpass to prompt for passwords, if
this option is set to "yes", and if ssh-askpass is available.
Default for "PreferAskpass" is "no".
Pacth is against current CVS.
Sebastian
--
signature intentionally left blank.
2011 Jan 18
2
ssh-add with stdin and read_passphrase
I would like to use ssh-add to unlock a key with a password provided
through a web interface.
It seems even though ssh-add calls read_passphrase with RP_ALLOW_STDIN
at ssh-add.c:173, stdin is not used as a last resort without a valid
terminal or display. Is it an intended behaviour ? And if so, what are
the security implications of using popen() to write the password to
ssh-add (not using echo
2016 Feb 13
2
[Bug 2539] New: Add missing sanity check for read_passphrase() in auth-pam.c
https://bugzilla.mindrot.org/show_bug.cgi?id=2539
Bug ID: 2539
Summary: Add missing sanity check for read_passphrase() in
auth-pam.c
Product: Portable OpenSSH
Version: 7.1p1
Hardware: All
OS: All
Status: NEW
Severity: major
Priority: P5
Component: PAM support
2019 Aug 06
2
[PATCH v2] Remove sshkey_load_private()
Remove sshkey_load_private(), as this function's role
is similar to sshkey_load_private_type().
---
Dependency:
This change depends over recently merged change in openbsd:
https://github.com/openbsd/src/commit/b0c328c8f066f6689874bef7f338179145ce58d0
Change log:
v1->v2
- Remove declaration of sshkey_load_private() in authfile.h
authfile.c | 38
2005 Apr 24
0
Solaris console problem
Hi,
I'm using openssh 3.9p1, and here is what bothers me.
If ssh is executed from an X application, when a password is prompted, ssh
manages to grap on to /dev/tty, but then the SIGTTOU is constantly sent to the
ssh and that loops the password prompt function infinetely, since it actually
gets to the console. Because of Solaris implemenation (I guess), that also
gives no cycles to other
2002 Apr 22
9
Password from open filedescriptor
The included patch adds a new option to the ssh client:
-d fd Read the password from file descriptor fd. If you use 0 for fd,
the passphrase will be read from stdin.
This is basically the same as GPG:s parameter --passphrase-fd.
Flames about why this is a bad idea goes into /dev/null. I really need to
do this. There are lots of ugly Expect-hacks out there, but I want a more
clean
2010 Jan 12
2
[patch] Automatically add keys to agent
My keys are secured with a passphrase. That's good for security, but
having to type the passphrase either at every login or at every
invocation of ssh(1) is annoying.
I know I could invoke ssh-add(1) just before invoking ssh(1), if I keep
track of whether I invoked it already, or write some hacky scripts; but
the rest of OpenSSH is wonderfully usable without any hacks.
Hence, this patch.
2020 Apr 25
2
[PATCH 1/3] Add private key protection information extraction to ssh-keygen
Add private key protection information extraction to shh-keygen using -v
option on top of -y option which is already parsing the private key.
Technically, the passphrase isn't necessary to do this, but it is the
most logical thing to do for me.
Adding this to -l option is not appropriate because fingerprinting is
using the .pub file when available.
An other idea is to add a new option, I
2004 Jan 06
1
Keychain Patch Try II
Sorry; here's the message I sent with the Keychain Patch yesterday. I
didn't realize that the list wouldn't extract the text parts of the
message. Enjoy.
Hey all,
Here's the patch to let SSH store passwords in the Mac OS X Keychain.
I don't know whether you guys want to include it or not with the
distribution; some people have said that since Keychain is not an open
2005 Feb 17
1
SFTP batch mode patch
Hi,
We do a lot of automated file transfers with SFTP, and found this small
patch very helpful. The main effect is to tell the underlying SSH client
that it's operating in batch mode. Patch is against 3.9p1.
Thanks,
Jeremy Monin
Sysadmin and open-source developer
diff -ur openssh-3.9p1-orig\sftp.c openssh-3.9p1\sftp.c
--- openssh-3.9p1-orig\sftp.c Sat Jul 17 02:12:08 2004
+++
2001 Jun 06
0
snk authentication
Here is a little patch against 2.9p1 that performs the SNK (also known
as TIS authserv) challenge-response automaticly instead of asking the
user. hope you find it useful.
--larry
-------------- next part --------------
diff -NuBw openssh-2.9p1/Makefile.in openssh/Makefile.in
--- openssh-2.9p1/Makefile.in Thu Apr 26 20:31:08 2001
+++ openssh/Makefile.in Wed Jun 6 16:15:56 2001
@@ -43,9 +43,9
2001 Oct 26
5
New password echoes on Sol8
I tried replacing readpassphrase() for v2.9.9p2 on Sol8 with a different
version that just calls getpassphrase(). It appears to solve the echo
problem when the user tries to login in interactive mode and needs to
change their password.
Can anyone else try this with v2.9.9p2 on Solaris? Be sure to add:
#define HAVE_GETPASSPHRASE
... to config.h when compiling (since it's not a configurable
2001 Nov 14
0
OpenSSH / Kerberos / AFS
I just wrote an email describing problems linking to libkafs in openssh
3/daily snap shot as of today, but I think I forgot to describe what the
problem was-
well first it says 'cannot find file or directory' on -lkafs, for some
reason it wasnt reading the directory even though- even though i added
the correct dir to ld.so.conf (linux)
so I cp'd the files to another directory where I
2002 Aug 07
0
AIX 4.3.3/OpenSSH 3.4p1 compile problem
I am having a problem building OpenSSH on my AIX 4.3.3 box. It fails
during the make with the following error:
xlc -o ssh ssh.o sshconnect.o sshconnect1.o sshconnect2.o
sshtty.o readconf.o clientloop.o -L. -Lopenbsd-compat/
-L/usr/local/ssl/lib -L/usr/local/lib -L/usr/local/lib
-L/usr/athena/lib -L/usr/afsws/lib
-blibpath:/usr/lib:/lib:/usr/local/lib:/usr/athena/lib -lssh
2002 Aug 02
3
[Bug 377] New: Reduce compiler warnings. Use unsigned args to the ctype.h is*() macros.
http://bugzilla.mindrot.org/show_bug.cgi?id=377
Summary: Reduce compiler warnings. Use unsigned args to the
ctype.h is*() macros.
Product: Portable OpenSSH
Version: -current
Platform: Sparc
OS/Version: Solaris
Status: NEW
Severity: trivial
Priority: P2
Component: Miscellaneous