Displaying 20 results from an estimated 1000 matches similar to: "help verifying ssh-agent signature from python?"
2012 Mar 03
1
Problem running stepAIC within a function.
Hi
I need to a function that automatically fits a regression to data, using the
stepAIC. I've ran the code manually and it works fine. However, when I run
the function on the same data, the following error occurs:
Problem in regimp(fullsim = simt, fullsim1 = simt1,..: Length of (weights)
(variable 4) is 4271 != length of others (4278)
I got the function to output the length of the dataset
2002 Jan 31
7
x509 for hostkeys.
This (very quick) patch allows you to connect with the commercial
ssh.com windows client and use x509 certs for hostkeys. You have
to import your CA cert (ca.crt) in the windows client and certify
your hostkey:
$ cat << 'EOF' > x509v3.cnf
CERTPATHLEN = 1
CERTUSAGE = digitalSignature,keyCertSign
CERTIP = 0.0.0.0
[x509v3_CA]
2000 Oct 08
1
OpenSSH-2.2.0 problem with ssh.com ssh-agent2
The OpenSSH and ssh.com agents use a completely different set of messages for
dealing with DSA keys, so I don't expect the OpenSSH client to be able to get
DSA keys from ssh-agent2. However, if I'm running "ssh-agent2 -1", I expect
OpenSSH to be able to use RSA keys stored in ssh-agent2's agent1 compatibility
box. And it does. However, there's a problem. If I'm
2005 Jul 26
1
Linux in-kernel keys support
Hi all,
I recently made a patch to openssh 4.1p1 to allow it to use the
in-kernel key management provided by 2.6.12 or later Linux kernels.
I've attached the patch (which is still only a proof-of-concept, for
instance its very verbose right now) to this mail.
Now, my question is, is this a completely insane idea and would (a later
version of) the patch have a chance of making it into the
2006 May 15
0
[PATCH 9/12] bug fix: openssh 4.3p2 possible NULL dereference
key is freed outside of the if that checks if key is NULL therefore,
NULL could be sent to the key_free function which will not handle it
correctly. The fix is to move key_free to a place where you know key is
not NULL. This patch moves the key_free call. This entire set of
patches passed the regression tests on my system. Bug found by Coverity.
Signed-off-by: Kylene Hall <kjhall at
2003 Oct 08
4
OS/390 openssh
Hello Steve, Hello OpenSSH-portable developers,
I am building OpenSSH for our (EBCDIC-based) BS2000 mainframe
operating system, and I noticed you do the same for OS/390.
Because my initial ssh port was based on IBM's OSS port (ssh-1.2.2
or some such), I thought it was fair enough to help with a little
co-operation; we might come up with a unified EBCDIC patch which could
be contributed to
2013 Nov 01
1
[PATCH] curve25519-sha256@libssh.org key exchange proposal
Here are three versions (patch against openbsd cvs)
1) repace nacl w/libsodium, so i could test
2) curve25519-donna
3) Matthew's public domain reference implementation.
i'd vote for #3
-------------- next part --------------
Am 30.10.2013 um 07:27 schrieb Damien Miller <djm at mindrot.org>:
> On Tue, 24 Sep 2013, Aris Adamantiadis wrote:
>
>> Dear OpenSSH
2024 Mar 30
11
[Bug 3675] New: CASignatureAlgorithms should be verified before verifying signatures
https://bugzilla.mindrot.org/show_bug.cgi?id=3675
Bug ID: 3675
Summary: CASignatureAlgorithms should be verified before
verifying signatures
Product: Portable OpenSSH
Version: 9.7p1
Hardware: Other
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component:
2010 Apr 14
0
warning: only V3 signatures can be verified, skipping V4 signature
Hello,
Anytime when I issue rpm command, there will be a warning massage "warning: only V3 signatures can be verified, skipping V4 signature".
For example,
[root at hadoop-datanode44 ~]# rpm -qa | grep -i post
postgresql-server-8.3.8-1PGDG.rhel4
warning: only V3 signatures can be verified, skipping V4 signature
postgresql-8.3.8-1PGDG.rhel4
postgresql-pgpool-II-2.3.1-1
2023 Mar 19
1
Minimize sshd log clutter/spam from unauthenticated connections
To radically cut down on SSH log spam you can also hide it completely behind a firewall, and allow access only by some port knocking sequence.
I quite like having a process listen on port 53 and wait for a dns query containing a totp string to grant (temporary) access; that's a 2fa, and doing a "host 123456. my-ip" is easily automated in a shell script as well...
2014 Jul 08
1
Can't verify gpg signature for the file with hashes for the CentOS 7
Hello there. I've just downloaded the CentOS v7.0 via torrent and am
trying to verify the gpg signature for the file with hashes. When I do
"gpg --verify sha256sum.txt.asc" I get the key ID of F4A80EB5. Then I'm
trying to get the public key with "gpg --keyserver pgp.mit.edu --recv-keys
F4A80EB5" command. The gpg returns error of "no valid OpenPGP data
2007 Aug 15
1
Performance Problem / failed to verify PAC server signature
Hello,
We are experiencing ADS lower performance on Samba-3.0.22 for HPUX. I
did Google search, and find out one message posted at
http://lists.samba.org/archive/samba/2005-November/114231.html at the
earlier time.
>From my observation, it seems there was a spin on
reply_spnego_negotiate()/ reply_spnego_kerberos() calls that invokes
register_vuid() to register uvid with different vuid# for a
2023 Mar 18
2
Minimize sshd log clutter/spam from unauthenticated connections
I guess you might find fail2ban useful.
It scans logfiles (like /var/log/sshd.log), and when it sees too many authentication failures from an IP address (or network range) it can issue commands to drop any further attempts via a firewall.
By having it read its own logfile it's possible to have repeated offenders be cut out for longer and longer time spans.
2005 Nov 21
1
Performance Problem / failed to verify PAC server signature
Hello List
We run a Solaris9 Server running Samba 3.0.20, Local Users (no winbind)
but authenticating against ADS.
There are up to 800 concurrent users, mostly Windows XP SP3.
When clients access MyDocuments, which is redirected to the Samba
share, we observe several
"Session Setup AndX Request"s
followed by
"Session Setup AndX Response, Error:
2004 Feb 21
0
overflow in buffer_put_bignum2
Hi
When buffer_put_bugnum2 is called with zero bignum, it touches unallocated
memory:
BN_num_bytes returns 0, one byte is allocated and
hasnohigh = (buf[1] & 0x80) ? 0 : 1;
touches array out of bounds.
Mikulas
2011 Mar 05
2
please help ! label selected data points in huge number of data points potentially as high as 50, 000 !
Dear All
I am reposting because I my problem is real issue and I have been working on
this. I know this might be simple to those who know it ! Anyway I need help
!
Let me clear my point. I have huge number of datapoints plotted using either
base plot function or xyplot in lattice (I have preference to use lattice).
name xvar p
1 M1 1 0.107983837
2 M2 11
1996 Nov 26
1
instead of nvi - test program
[Sorry, it seems that I overlooked this message -- alex]
Hi,
Since nvi is hard to come by, here is a little program to mimic the behavior
of nvi on any file you care to try...
usage: locklogin file_to_lock
It first tries POSIX locking and then does BSD flavor. It seems that it is
BSD after all that is causing the trouble...
Best wishes
Andrew
#!/bin/csh -f
# Uuencoded gz-compressed file
2001 Nov 16
0
[PATCH] Re: Kerberos support for portable
Thanks, Simon for the MIT Kerberos5 patches.
FWIW, here are further patches which allow openssh-3.0p1 to work
with paleo-MIT Kerberos5 1.0.6, more or less (more with tickets
and less with the auth_krb5_password {get,verify}_init_creds stuff).
BTW, the patches I pulled out of the archive seemed to have some
line wrapping problems; I had to apply several chunks by hand.
I'm therefore including
2008 Oct 13
0
Album art - requirements
On 10/13/08, ogg.k.ogg.k at googlemail.com <ogg.k.ogg.k at googlemail.com> wrote:
> The outcome was unconclusive, and kind
> of settled on the existing practice of adding a uuencoded image
> in a Vorbis comment, or similar.
COVERART's the name. There's at least one known software to be using it.
> Kate streams can include PNG images, so are another possibility,
>
2008 Oct 13
0
Album art - requirements
I think we have to discuss a fundamental question about coverart first:
is coverart a header-type content or a time-aligned type content?
It was my impression that it is mostly header-type content, i.e.
concerns the full file rather than segments of it.
Therefore, embedding it into any of the time-aligned streams (Kate,
CMML, OggMNG) doesn't make much sense to me.
It should be in a header.