Displaying 20 results from an estimated 8000 matches similar to: "Trivial patch: update README about AIX port status"
2004 Jul 06
4
AIX and zlib
I noticed that AIX now comes with a version of zlib installed in /usr. (I'm
working on 5.2)
My first inclination was to simply uninstall it and use the one we compile
(and put in /usr/local).
However, IBM has made zlib part of the RPM package itself!
So, I cannot uninstall it without removing RPM....
Next, I tried passing --with-zlib=/usr/local to configure for ssh.
This seems to work, but
2001 Feb 16
1
CVS and AIX
Hi,
trying "current CVS" on AIX 4.3.3, yields:
gcc -O2 -Wall -I/usr/local/include -I/gnulocal/include -I/gnu/include -I. -I./openbsd-compat -I. -DETCDIR=\"/etc\" -D_PATH_SSH_PROGRAM=\"/gnu/bin/ssh\" -D_PATH_SSH_ASKPASS_DEFAULT=\"/gnu/libexec/ssh-askpass\" -D_PATH_SFTP_SERVER=\"/gnu/libexec/sftp-server\" -DHAVE_CONFIG_H -c auth.c
auth.c: In
2001 May 17
5
AIX SSH 2.x ssh and /etc/ftpusers rcp rlogin WRONG !
IF ssh is a replacement for rlogin,rsh etc I can accept it respecting
rlogin=false as rlogin does and rsh does not, however scp is a replacement
for rcp, and rcp does NOT use rlogin attribute, so the implementation is
NOT standard as scp fails if rlogin=false, but rcp succeeds, as documented.
thanks
mark
2016 Mar 08
2
Need Help to Fix CVE-2008-1483, CVE-2008-5161, CVE-2015-5600 and CVE-2015-6565
Hi Gert,
Thanks for your reply.
But we can't upgrade to 7.2 version also we don't have plan to upgrade in
near future. Can I fix these vulnerabilities in the current version?
Regards
Abhishek
On Tue, Mar 8, 2016 at 6:42 PM, Gert Doering <gert at greenie.muc.de> wrote:
> Hi,
>
> On Tue, Mar 08, 2016 at 06:14:01PM +0530, abhi dhiman wrote:
> > Actually I am working
2003 Aug 22
4
AIX problem
We are running 3.4p1. After upgrading to AIX 5.1, the "w" function (in
ksh) stopped showing ssh logins. We upgraded to 3.6p1, no luck.
Any thoughts?
---
Jack Gostl gostl at argoscomp.com
2001 Jun 27
2
OpenSSH, Cygwin, eXceed, and SIGINT
All,
When logging into an HP-UX 10.2 system from a Windows NT machine
running Cygwin and openssh 2.9p2, control-c sends a sigint to the ssh client
on the NT system, thus killing the ssh process. Interestingly enough, this
behavior is only observed when using X11 forwarding. I can eliminate the
behavior by changing clientloop.c to ignore SIGINT (signal(SIGINT, SIG_IGN)
) but then I'm bak to
2002 Jan 22
7
AIX reading /etc/environment out of step.
I was discussing with Don about a private topic..and while skimming the
code I noticed that during a 'ssh mouring at site ls' the /etc/environment
is *ONLY* read if the remote machine is an AIX box. This is undocumented
and I'm wondering if someone using AIX could explain WHY it exists in the
session.c:do_child()? No other OS has this. I don't see why AIX should
require it.
2017 Oct 17
2
Status of OpenSSL 1.1 support
Hi,
On Tue, Oct 17, 2017 at 05:54:52AM -0600, The Doctor wrote:
> The best solution is if (LIBRESSL) || (OPENSSL < 1010...)
>
> Else
>
> Whatever.
>
> Is that too much work?
Littering code with #ifdef is almost never a good idea.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert
2015 Feb 17
2
matching on client public key
As I understand currently there is no way in sshd_config to match
based on the client public key so different configuration for the same
username can be applied depending on the key, right?
My case is a backup login that needs to run as a root to access all
the files and where I want to use ForceCommand to allow the login only
to execute a particular command and yet still allow normal root
2002 Aug 07
2
OpenSSH 34p1 for AIX error. Please help
I'm trying to install open-ssh 34p1 on an Aix server, running 4.3.3..
I compiled openssh 0.9.6d and zlib 1.1.4. on the server , and also created
the a bff pancake using the contrib/aix/buildbff.sh script.
I can't start sshd either installing it as a package or without.
When I tried to start sshd I received the following error:
0509-036 Cannot load program /.sshd because of the following
2017 May 19
2
feature request: use HOME before getpwnam() in misc.c
I'm using bash. The shell does the correct thing.?
Sorry ?didn't give the use case clearly.?
I'm talking about the use of tilde inside client config. ?The example was to illustrate desired behavior. Ssh itself does not eval tilde with any consideration for environment. That is the problem.?
? Original Message ?
From: Gert Doering
Sent: Friday, May 19, 2017 02:19
To: matthew patton
2016 Feb 17
2
Using 'ForceCommand' Option
I would like to implement an arbitrary script to be executed when logging
on via SSH. This is supposedly possible using the ForceCommand option to
sshd. However, as soon as I implement any script, even as simple as echoing
a string, clients can no longer connect to the server. Clients report only
that the connection was dropped by the server. The server, in debug mode,
shows:
Feb 17 16:14:01
2017 May 18
2
feature request: use HOME before getpwnam() in misc.c
it's really^3 annoying that no matter the value of $HOME, that tilde_expand_filename() only looks at getpwnam() and friends instead of at least trying getenv("HOME").
What is the use case?
HOME=longpath_to_config1
ssh -i ~/.ssh/key1
HOME=longpath_to_config2
ssh -i ~/.ssh/key2
but getpwnam() defeats this by always accessing what's in the passwd file. So .ssh/known_hosts is
2002 Apr 02
3
PrivSep and portability
Hi,
I've seen a few patches related to the PrivSep works. As far as I can
see, it seems to work by using a shared memory segment to communicate.
I just want to point out that there are some unix systems that do not
have mmap() (SCO, older SVR3 systems) or that might have problems with
anonymous shared mmap() (don't have an examples, but e.g. the INN docs
are full of warnings concerning
2001 Aug 14
1
configure bug
This was dicovered in openssh-2.9p2 on BSDi 4.1. If you configure
--with-ssl-dir and give a relative path (like ../openssl-0.9.6b), it will
not compile because that path is no longer valid once it cds to
openbsd-compat. In the CPPFLAGS variable in openbsd-compat/Makefile, you
can put in another ../ (-I../openssl-0.9.6a/include becomes
-I../../openssl-0.9.6a/include) and it works.
Perhaps there
2000 Dec 22
1
bug in sshd.d (destroy_sensitive_data core dumps)
Hi,
experimenting with openssh_cvs on my SCO Unix 3.2v4.2 machine, I had
sshd core dumping on me.
Tracking this, I found that if a host key is specified in the sshd_config
that does not exist (I used "./sshd -d -d -d -f sshd_config" with the
shipped sshd_config file, to work around incompatibilities with the
installed sshd.com's sshd_config, and I do not have ssh2 host keys on
2016 Mar 08
4
Need Help to Fix CVE-2008-1483, CVE-2008-5161, CVE-2015-5600 and CVE-2015-6565
Hi All,
Actually I am working with the OpenSSH version 6.2p which is vulnerable to
above mentioned vulnerabilities.
So am looking for some help how I can fix these vulnerabilities in my
version. I need to fix it in the OpenSSH code.
Regards
Abhishek
2002 Mar 12
3
error compiling openssh-3.1p1 under SCO OpenServer 5.0.5
Trying to compile openssh-3.1p1 on SCO using:
export CCFLAGS='-L/usr/local/lib -I/usr/local/include'
./configure --sysconfdir=/etc/ssh --with-rsh=/usr/bin/rcmd
--exec-prefix=/usr
OpenSSH has been configured with the following options:
User binaries: /usr/bin
System binaries: /usr/sbin
Configuration files: /etc/ssh
Askpass
2018 Jul 06
2
Does anyone use UsePrivilegedPort=yes or setuid ssh(1) ?
On 6 July 2018 at 17:24, Gert Doering <gert at greenie.muc.de>wrote:
[...]
> I think we have one customer connection where their firewall admin
> thinks "it is more secure that way" - read, we can't ssh in if we come
> from high ports.
>
> OTOH, thanks for the pointer with ProxyCommand - it's a very specific
> niche problem with a viable workaround, so I
2015 Apr 22
2
shared private key
On Wed, Apr 22, 2015 at 10:55 AM, ?ngel Gonz?lez <keisial at gmail.com> wrote:
> On 22/04/15 16:42, Reuben Hawkins wrote:
>>
>> Hi SSH-devs,
>>
>> This may be a bit off topic for this list, but....
>>
>> Would it be ok to share a private key in an installer script so long
>> as the corresponding public key is setup like this...
>>
>>