Displaying 20 results from an estimated 1000 matches similar to: "PermitRootLogin=forced-commands-only does not work with UsePrivilegeSeparation=yes"
2002 Aug 07
0
[Bug 382] New: Privilege Separation breaks HostbasedAuthentication
http://cvs-mirror.mozilla.org/webtools/bugzilla/show_bug.cgi?id=382
Summary: Privilege Separation breaks HostbasedAuthentication
Product: Portable OpenSSH
Version: -current
Platform: Sparc
OS/Version: Solaris
Status: NEW
Severity: major
Priority: P2
Component: sshd
AssignedTo: openssh-unix-dev at
2007 Aug 14
2
OpenSSH public key problem with Solaris 10 and LDAP users?
Hello.
I've got a problem logging in to a Sparc Solaris 10 machine with
public key authentication. I searched, and found a similar problem
report at <http://thread.gmane.org/gmane.network.openssh.devel/12694>.
For that guy, the problem had to do with LDAP.
My user accounts are also stored in LDAP, an OpenLDAP server, to be
exact. That server runs on the same machine as the machine
2002 Jun 28
1
hostbased authentication problem in 3.4
I am seeing the same issues as another recent post, hostbased
authentication in 3.4p1 not seeming to work. I tried the ssh-keysign.c
patch posted, didn't seem to fix the problem.
Details:
Solaris 7, OpenSSH 3.4p1, OpenSSL 0.9.6d
Key from client ssh_host_rsa_key.pub copied to server /etc/ssh/ssh_known_hosts2
with comma-separated client hostnames added to front and a blank space before
rest of
2009 Feb 06
3
Hung connection over Juniper Tunnel
Hello list!
So I recently reconfigured our office network to allow a permanent VPN
connection to our data center. This consists of a Juniper SSG-520
connected via a tunnel to a Juniper Netscreen-25 over a 100M leased
NTT VPN (yes I'm tunneling over the VPN as it's the only way to make
it routable.) Here is where OpenSSH come in. When I try and ssh to a
machine on the other end
2015 May 30
8
Call for testing: OpenSSH 6.9
Debian GNU/Linux 8.0 (jessie)
OpenSSL 1.0.1k
gcc (Debian 4.9.2-10) 4.9.2
"make tests" fails here:
/usr/src/INET/openssh/ssh-keygen -lf
/usr/src/INET/openssh/regress//t12.out.pub | grep test-comment-1234
>/dev/null
run test connect.sh ...
ssh connect with protocol 1 failed
ssh connect with protocol 2 failed
failed simple connect
Makefile:192: recipe for target 't-exec' failed
2002 Jun 28
2
ssh_rsa_verify: RSA_verify failed: error:
Host based authentication does not seem to be working for us after
upgrading to openssh-3.4p1 (we were at openssh-3.1p1) (openssl is at
0.96d). Any time we try to connect from another unix box also running
openssh-3.4p1, we get the following error (on the server side) and host
based auth fails (it falls back to password prompt).
sshd[15038]: error: ssh_rsa_verify: RSA_verify failed:
2006 Aug 15
1
OpenSSH_4.3p2 fails to create a pty session
I am out of ideas about what the problem is. I am using the default
sshd_config installed by the port. I can authenticate, copy files, and
start processes, but sshd fails to create a tty session. This happens
from remote machines and creating a session from the host machine. I
find the following under messages.
Aug 8 19:32:16 mongoloid sshd[44626]: fatal: mm_send_fd: sendmsg(4):
Bad
2006 Apr 21
4
Solaris 8 x86 rsa pubkey auth problem
Hello,
I got some weird problem with public key authentication using rsa key pair.
Let me first of all explain my setup.
1) I got two Solaris 8 x86 boxes
uname -a
SunOS 5.8 Generic_117351-24 i86pc i386 i86pc
<kdc: 192.168.10.11> <---> <module: 192.168.10.10>
2) They're running absolutely identical openssh installations
I'm using pkgsrc, so I've builded all
2003 Oct 05
2
OpenSSH Authentication on Solaris w/ NIS+ Problem
Hello,
I am having a very aggrivating problem, and I will try and provide all of the necessary information. I have openssh-3.7.1p2 with openssl-0.9.6k installed on Solaris 8. Here is what I've been able to determine so far:
1. Local account authentication works fine (non-NIS+).
1a. NIS+ is running at security level 2
2. Telnet authentication works fine.
2a. When I use the SSH client,
2002 Nov 20
0
[marco.ortisi@flashcom.it: Re: bug on openssh 3.5p1]
related to RST-based close in one case?
can someone investigate or dup?
----- Forwarded message from marco.ortisi at flashcom.it -----
Date: Tue, 19 Nov 2002 11:49:30 GMT
From: marco.ortisi at flashcom.it
To: Kevin Steves <stevesk at pobox.com>
Subject: Re: bug on openssh 3.5p1
Excuse me for delay...i have much work in this time...then
>can you post to the list? i don't have
2003 Apr 17
0
pam_mkhomedir and priv separation
Hello,
I'm not sure if this has already been addressed, I looked through the
archives and can't seem to find anything. I also did some Usenet
searching and only found one article mentioning this, and it was
in French.
Anyway, the problem is that it appears as though when using privsep
opensshd doesn't execute pam_session as root, and this causes
pam_mkhomedir to fail.
2003 Oct 09
5
kerberos + gssapi password change
Hello
I am not a developer, but since this is a more advanced issue I rather
post to this list than to the users list, I hope this is OK.
We are currently running openssh with simon's gssapi patch and want to
move towards the new integrated solution with openssh-3.7.1p2. A problem
we experienced in both versions of openssh is that we are not able to
change the kerberos password, when it
2003 Jan 21
3
X11 forwarding problem -- openssh-3.5p1 -- redhat 8.0 -- linux 2.4.18
All,
I'm working on upgrading a machine from RH 6.2 to RH 8.0. I've
encountered one major (for me) snag in that I cannot get X11 forwarding to
work anymore.
I've been google-ing the error messages all morning, with no luck.
Here is debugging output from the server (client debugging output sent
upon request... I don't feel it is relevant). What I feel is interesting
is at the
2015 Apr 07
2
OpenSSH 6.6.x sends invalid SSH_MSG_USERAUTH_INFO_REQUEST
Darren Tucker <dtucker at zip.com.au> writes:
>That's a vendor-modified version of OpenSSH. Assuming it corresponds to
>what's in FreeBSD head, there's about a thousand lines of changes.
Ugh.
>Can you reproduce the problem with an unmodified version from openssh.com?
>Failing that, can you get the server-side debug output from a failing
>connection (ie
2010 Jun 02
1
openssh sftp fails to start a session
Hi,
I am having trouble running sftp from the openssh package openssh-5.5p1. There seems to
be an authentication problem.
This is what happens:
$ sftp -o "Port 2022" testu at localhost
testu at localhost's password:
Connection closed
QUESTION:
Can someone spot the problem please? How do I fix this?
FURTHER INFORMATION
I can run openssh's ssh:
$ ./ssh -p 2022 testu at
2002 Jun 24
1
sshd 3.1 dumps core when client connects -- Solaris 9 gcc 3.1
Team -
I'm running Solaris 9 and gcc 3.1 on a Blade 1000, named jefferson.
I built OpenSSH_3.3. I can use the client to connect out,
but cannot use the client to connect to localhost (nor can
I use a Linux box with OpenSSH_3.2.3 to connect to it).
I *can* use F-Secure 3.0.0 on a Windoze box to get into it.
I've tried configurations both with and without privsep enabled
but get the same
2002 Dec 06
0
Error Msg --> "fork of unprivileged child failed"
I have installed OpenSSH on a RedHat 7.1. When I try to log on I get a 'connection closed' after I enter my password. What is wrong???
Here is the debug info:
# /usr/sbin/sshd -ddd
debug1: sshd version OpenSSH_3.5p1
debug1: private host key: #0 type 0 RSA1
debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key.
debug1: read PEM private key done: type RSA
debug1: private host key: #1 type
2015 Jul 24
3
Cisco vs. 6.9
> Many aging ciphers, hashes, and key exchanges are in the process of being
> retired. <1kbit Diffie Hellman moduli have been removed as well in 6.9, I
> believe.
>
> If the Ciscos rely on <1kbit DH moduli or SHA1/MD5 hash based proposals to
> work, that could be your problem.
We did not update the moduli file.
> A comparison of the two versions' output from:
2009 Jul 17
1
GSSAPI Kerberos Differences between 5.1p1 and 5.2p1?
Hello,
I'm trying to find clues on what may have changed for GSSAPI (Kerberos)
authentication between OpenSSH 5.1p1 and 5.2p1. We have been using
GSSAPI authentication for ssh for about 18 months with no problem with
the OpenSSH build that is bundled with the FreeBSD operating system.
All of those machines have OpenSSH 5.1p1. Last week I upgraded one of
the servers to FreeBSD 8.0-BETA1
2002 Aug 01
0
[Bug 376] New: HostbasedAuthentication, followed snailbook but not working! :-(
http://bugzilla.mindrot.org/show_bug.cgi?id=376
Summary: HostbasedAuthentication, followed snailbook but not
working! :-(
Product: Portable OpenSSH
Version: -current
Platform: UltraSparc
URL: http://groups.google.com/groups?dq=&hl=en&lr=&ie=UTF-