similar to: [Bug 379] New: difficult to find the openssh code signing key on openssh.org.

http://bugzilla.mindrot.org/show_bug.cgi?id=379 papadopo at shfj.cea.fr changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WORKSFORME | ------- Additional Comments From papadopo at shfj.cea.fr 2003-05-02 20:15

Below the trojaned and clean md5s are given. ---------- Forwarded message ---------- Date: Thu, 1 Aug 2002 13:39:22 +0200 From: Magnus Bodin <magnus at bodin.org> To: Wojtek Pilorz <wpilorz at bdk.pl> Cc: openssh-unix-dev at mindrot.org Subject: Re: openssh-3.4p1.tar.gz on ftp.openbsd.org changing rather than frozen On Thu, Aug 01, 2002 at 09:20:29AM +0200, Wojtek Pilorz wrote:

OpenSSH Security Advisory (adv.trojan) 1. Systems affected: OpenSSH version 3.2.2p1, 3.4p1 and 3.4 have been trojaned on the OpenBSD ftp server and potentially propagated via the normal mirroring process to other ftp servers. The code was inserted some time between the 30th and 31th of July. We replaced the trojaned files with their originals at 7AM MDT, August 1st. 2. Impact: Anyone who has

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Folks, I've uploaded a new release key expiring 04-Feb-2008. Available on keyservers (ID 6568B7EA) and at http://www.samba.org/samba/ftp/samba-pubkey.asc. Signed by myself (D83511F6) and the previous samba-bugs (157BC95E) key. $ gpg --fingerprint 6568B7EA pub 1024D/6568B7EA 2007-02-04 [expires: 2008-02-04] Key fingerprint = 52FB C0B8 6D95 4B08

> > Details on these, please? Since that was kind of what I was asking for in > the OP :) netflix's bless has been around for a while. https://github.com/Netflix/bless nial sheridan gave a talk recently at LISA about cashier. https://github.com/nsheridan/cashier and finally i'm hoping to have all the necessary approvals to release ussh early next year. I wrote about ussh here

> (Blargh is right (https://blog.habets.se/2011/07/OpenSSH-certificates.html <https://blog.habets.se/2011/07/OpenSSH-certificates.html>). Googling for this stuff is *hard*:) Does https://www.sweharris.org/post/2016-10-30-ssh-certs/ help at all? Stephen

On Sun, Dec 24, 2017 at 9:54 PM, David Newall <openssh at davidnewall.com> wrote: > On 25/12/17 00:11, John Devitofranceschi wrote: >> >> Besides ssh.com?s PrivX product, has anyone created a web service that can >> be used to issue temporary certkeys to authenticated users? >> >> Any pointers appreciated! > > > I expect that what I'm about to

Hi, FYI: ------------------------------------------------------ http://docs.freebsd.org/cgi/getmsg.cgi?fetch=394609+0+current/freebsd-security ------------------------------------------------------ >Greetings, > >Just want to inform you that the OpenSSH package op ftp.openbsd.org >(and probably all its mirrors now) it trojaned: > >

Besides ssh.com?s PrivX product, has anyone created a web service that can be used to issue temporary certkeys to authenticated users? Any pointers appreciated! jd -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2393 bytes Desc: not available URL:

On 09/17/2015 12:46 PM, Akemi Yagi wrote: > > I also suspect this is a grub2 issue. Perhaps, you may want to file a > bug report [against grub2] at http://bugs.centos.org so that this can > be followed properly. Yeah, I just figured out how to query the signature of the new and previous grub image. The new one is signed with "Red Hat Test Certificate" [root at vagrant

I have seen that file ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-3.4p1.tar.gz is continuosly changing. This seems strange to me as I expected it should be a 'frozen' file; The signature and diff file are still dated Jun 26. I am wondering whether this is intentional. Best regards, Wojtek

`ssh-keygen -Y sign` only selects the signing algorithm `rsa-sha2-512` and this prevents ssh-agent implementations that can't support sha512 from signing messages. An example of this is TPMs which mostly only really supports sha256 widely. This change enables `ssh-keygen -Y sign` to honor the `hashalg` option for the signing algorithm. Signed-off-by: Morten Linderud <morten at

Hi everyone, I'm relatively new to Samba - at least for more in-depth installations. Big Thank-You from my company to the brilliant developers responsible for this software. We have our Samba server integrated with our Windows 2003 AD domain users via Winbind - a working installation with some issues described below. getent passwd works as the many docs show (one entry below):

Hello all and congrats on Rsync 3.0.0! Where is the signing key for rsync? I am trying to verify the signature: http://rsync.samba.org/ftp/rsync/src/rsync-3.0.0.tar.gz.asc. I have searched the FAQ, the web site, and the ftp site for the answer to this question to no avail, and unfortunately the mailing list web interface doesn't seem to have a search facility either. :( I even tried to

How do I import and install the key for signing the above rpm (driver for HP Colour laserjet 3500 printer) which I've downloaded from the kde repo? - I want to use yum localinstall, but when I do I get the message 'package not signed'. Thanks for help, Andy

(reposting 'cause I sent the last one from a non-subscribed address) Hi there. I tried "yum update"ing my x86_64 CentOS-3 box today, but the packages won't install and yum claims I don't have an appropriate signing key. I've been happily doing updates all along (last time was Oct. 12) with no trouble. The key ID used to sign the x86_64 packages is 219180cddb42a60e

I'm using dovecot RC6. I have a group named "cmpymail" with 2 users "jdoe at arinbe.com" and "jsmith at arinbe.com". I set up a mail folders like: drwxrwx--- 4 cmpymail cmpymail 4096 2006-08-13 02:21 cmpymail drwxrwx--- 3 jdoe users 4096 2005-11-21 13:34 jdoe drwxrwx--- 3 jsmith users 4096 2006-08-13 02:27 jsmith drwxrwx--- 3 fred users

Hello, I am attempting to debug an issue with my Samba configuration. It has been working fine, but we recently updated Samba from 4.6.x to 4.8.3 and are now seeing some issues authenticating. Most of our servers are still working fine after the upgrade, but one server is giving us issues. A little more environment info: The server is running Centos 7.1. Windows clients can connect OK. We are

Hi I'm possibly missing something obvious, but I'm struggling with ownership permissions on a Samba server. I have a Solaris 10 server running Samba 3.0.33. The server has been joined to the Active Directory domain (CSS). Every user has both a Unix login (served by NIS) and a Windows Domain login account. I can connect to the Samba share and create files without any problems. The Samba

Hello, I'm having problems with user names containing a dot. For example "j.smith". In our network we have Win2K PDC and a Samba server. smb.conf contains this: [global] security = domain password server = MYSERVER username map = /etc/samba/smbusers [myshare] valid users = j.smith write list = j.smith etc... /etc/samba/smbusers file contains this: jsmith = j.smith And Linux box