similar to: 3.0.2p1: all sshd processes owned by root

Hello, in the BSD Authentication system the login script can request environment variables to be set/unset. The call to auth_close() in auth-passwd.c does change the current environment, but those changes are lost for the child environment. It would be really useful to add some kind of mechanism to get those changes into the child environment. I've added two possible solutions. Both

Hi, After searching gmane.mail.imap.dovecot on the topic, and wiki.dovecot.org, I'm still clueless on how to use RFC 2087 quotas in dovecot with the quota plugin. How come no wiki doc? My setup: Solaris 9, mbox format. Both the filesystem for INBOXes (/var/mail) and the user's home directories have filesystem-based quotas imposed. For example: % quota -v joeblow Disk quotas for

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 With the sieve plugin trying to redirect or send vacation reply I'm getting the following error: Aug 19 13:12:52 goku deliver(joeblow): [ID 619685 mail.info] Module loaded: /use rM/mail-services/dovecot/lib/dovecot/lda/lib90_cmusieve_plugin.so Aug 19 13:12:52 goku deliver(joeblow): [ID 848615 mail.info] mbox:

Hi! I'm investigating the seccomp filter in openssh and I wanted to know whether the following system calls should be added to the filter: 1. getgroups - do_authentication2->dispatch_run_fatal->sshpkt_fatal->logdie->cleanup_exit->do_cleanup->temporarily_use_uid->getgroups 2. setgroups -

I'm using OpenSSH-2.9.9p2 on Solaris 8 sparc64. 2.9p2 worked fine, but 2.9.9p2+ is giving me trouble with one thing - sshd segfaults if I try to connect and execute a command, such as "ssh machine ls". Otherwise it works great. sshd will fork, and the child process segfaults. CVS snapshot does the same thing. I've narrowed this down somewhat. It will only happen if you use

We need to give a user in another domain access to our printer: our domain: OURDOM (samba) other domain: OTHERDOM (AD?) user's workstation: \\OTHERDOM\WKSTN, in other domain printer: in our domain user: JOEBLOW - an account in each domain with the same login/password We're getting this error in wkstn.log: [2003/05/28 20:44:20, 1] smbd/password.c:server_validate(1101) password

I'm sending this only to openssh-unix-dev at mindrot.org (since I'm using the ported version of OpenSSH) and not to openssh at openssh.com, even though I believe this to be a general problem. Please advise if you think I should redirect this to the other mailing list. Version: OpenSSH_2.2.0p1 Keywords: setsockopt keepalive hang masquerade Symptom: For protocol 2, socket options

Hello, This bug exists in 5.0p1. I apologize that I couldn't test against HEAD. I _believe_ I have found a race condition in sshd. In the v2 protocol, after a connection, the accepting process forks in privsep_preauth(). The parent executes monitor_child_preauth() to allow certain privsep requests necessary for authentication. The unprivileged child runs do_ssh2_kex() followed by

I'm having the problem in which users can access their group shares, but not their home shares. These two shares are defined thusly in smb.conf: [seref] comment = Science & Engineering Reference Section path = /data/group/seref valid users = @seref, @seref-read, @admin read list = @seref-read write list = @seref, @admin

Hi: I'm running dovecot on a Fedora 3 box and would like to be able to make a TLS connection to it with my Pegasus Mail program running on my Winblows machine. Does anybody know if it is possible? If it is I could really use some help configuring my dovecot. I have tried for several days but I really don't know what I'm doing and need a direction to start. Thanks, -- Knute

hi , i am adding new feature biometrics authentication to openssh i have following query after all the authentication methods fail i want to add new authentications after it but i am unable to add it when i add the code i get errors connection closed by remote host connection closed and in log file i get monitor_read unsupported request i

Thanks to everyone who has replied to my emails so far - to summarise: AIX allows setting of rlogin=false and and a su group, or a list of users that are permitted to "su" to root. ( or other functional ids ) This means with entries in /etc/ftpusers, it is possible to : 1/ Track who used root via sulog and or external logging 2/ Protect root even if the root password is compromised 3/

Somewhere between 2.9p1 and 2.9.9p2 there was a change to auth2.c that removed the userauth_reply() function. There were a few lines of code in that function, #ifdef'd with WITH_AIXAUTHENTICATE, that handled the AIX method of lastlog type stuff (specifically, a loginsuccess() call). There is a similar call in auth1.c, down in do_authentication(), which is still there in 2.9.9p2. So with

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sorry to bring this up again. I have now configured my test server to pass all email messages off to our central campus email filter gateway. This gateway scans all email traffic for viruses/spam before being delivered to any local mail servers. Once I did this my auto vacation replies are getting canned due to the fact the from header line is empty

The way things are now, input_userauth_request() calls the authmethod, and then does a bunch of checks, like the special case for root. If an authmethod requires a challenge-response conversation, these checks are skipped, unless they are duplicated by the authmethod. For example, in auth2-chall.c, some of the code is duplicated (logging, sending the reply), but the root special case is skipped.

It looks to me like the 'winbind nss info' parameter is designed to be a space-separated list of values. I say this because: 1) i gave it two values, separated by spaces, and testparm(1) did not complain; 2) the man page ( http://www.die.net/doc/linux/man/man5/smb.conf.5.html ) gives an example of two values. Assuming that's true, how do the multiple values work together? Is order

(I vaguely remember talk about PAM session stuff recently... please excuse me if this is the same problem.) I compiled v2.9.9p2 on Solaris 8 with the following configuration and the Sun Workshop v5 compiler: OpenSSH has been configured with the following options: User binaries: /opt/openssh-2.9.9p2/bin System binaries: /opt/openssh-2.9.9p2/sbin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I'm testing out dovecot with postfix. I'm running postfix 2.5.2 with dovecot version 1.1.1 with dovecot sieve plugin version 1.1.5. I have everything compiled and working except for the sieve plugin. I'm now trying to test out the sieve plugin and having no luck in getting a simple auto vacation reply to work. Here is my

Samba 2.0.7 / AIX 4.3.3 Works as expected currently data path is /home. Using the special "share" of [homes] End users would like the ability to see each other's $HOME i.e. /home/joeblow browseable by all other users on the system or even just the users of the same group. But have write ability restricted to the owner of the directory. In this case joeblow can write/change

Here are some patches to re-enable support for AIX's authenticate routines. With them, ssh will honor locked & unlocked accounts, record successful and unsuccessful logins, and deny accounts that are prohibited to log in via the network. Tested with AIX 4.3. It also includes a fix for handling SIGCHLD that may be needed for other platforms (HP-UX 10.20, for example). If I get the time