similar to: Krb5 options patch

openssh-unix-dev at mindrot.org kerberos at ncsa.uiuc.edu We believe there is a security flaw in either OpenSSH and/or RedHat's pam_krb5 module. When a Kerberos principal has the REQUIRES_PWCHANGE (+needchange) flag set, OpenSSH+pam_krb5 will still successfully authenticate the user. Local 'su' and 'login' fail in this case which leads us to believe it's at least

http://bugzilla.mindrot.org/show_bug.cgi?id=757 Summary: KRB5CCNAME inherited from root's environment under AIX Product: Portable OpenSSH Version: -current Platform: PPC OS/Version: AIX Status: NEW Severity: minor Priority: P2 Component: sshd AssignedTo: openssh-bugs at mindrot.org

http://bugzilla.mindrot.org/show_bug.cgi?id=757 dtucker at zip.com.au changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #498 is|0 |1 obsolete| | ------- Additional Comments From dtucker at zip.com.au 2003-12-23 00:44 -------

Due to difficulties in getting PAM (with krb5) password expiry working consistently on multiple platforms, I'd like to see if I could hack something into auth-krb5.c to do so. Here's a backtrace when stopped in auth_krb5_password: #0 auth_krb5_password (authctxt=0x8e148, password=0x90250 "XXXXXXXX") at auth-krb5.c:270 #1 0x274d8 in auth_password (authctxt=0x8e148,

I am having the same problem. But, I cannot access to the following link for solution http://wiki.ncsa.uiuc.edu/wiki/Dell_PE1950_NIC_Firmware_Workaround Can someone send me the content of this link? Thanks. Pete, This may be relevant: http://wiki.ncsa.uiuc.edu/wiki/Dell_PE1950_NIC_Firmware_Workaround - Mike At 8/18/2006 09:40 AM Friday, Peter McEvoy wrote: Hi, I''ve run

http://bugzilla.mindrot.org/show_bug.cgi?id=958 Summary: patch to support GSI GSSAPI mechanism Product: Portable OpenSSH Version: 3.9p1 Platform: All URL: http://grid.ncsa.uiuc.edu/ssh/ OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: Miscellaneous

On Friday, 08 February 2002 at 13:12, Samuel Hathaway wrote: > On Fri, 8 Feb 2002, Akos Maroy wrote: > > > Jack Moffitt wrote: > > > > > Why are you writing clients that don't use libshout? > > > > darkice doesn't use libshout either. > > > > I guess the main reason to have a protocol is that anyone can connect > > using it? >

Hi, I've noticed that http://llvm.org/status/ hasn't been updated for a while, so I tought that some of you might find the following information interesting and/or encouraging... For benchmarking the stuff I'm working on I needed to compile a number of open-source packages. The settings I used: AS=llvm-as lLD=llvm-ld AR=llvm-ar CXX=llvm-g++ CC=llvm-gcc CFLAGS="-g

Hello, I am trying to mount a lustre filesystem thru an ib2ip gateway. The MDS''s have infiniband connections. The client nodes are tcp/ip connections. I am able to route between the client nodes and the MDS''s. I have the following in /etc/fstab: abe-mds1 at o2ib0,abe-mds2 at o2ib0:/home/client /abehome lustre _netdev,flock 0 0 I get the following when trying

https://bugzilla.mindrot.org/show_bug.cgi?id=1702 Summary: PreferredAuthentications setting doesn't work when spaces are used as documented Product: Portable OpenSSH Version: 5.3p1 Platform: Other OS/Version: Mac OS X Status: NEW Severity: normal Priority: P2 Component: ssh

I have set up LDAP/KRB5 access to my active directory network. If I do a getent passwd, I see the users with a unix UID/GID. If use kinit, I can get a token. If I su to a user, it creates a home folder, and shows correct IDs etc. However the machine will not log in via ssh or the GUI. In secure I see: Oct 27 11:14:55 rhelads sshd[4190]: pam_krb5[4190]: ccache dir: /tmp Oct 27 11:14:55 rhelads

> Sergio Gelato wrote; >> I see that the rest of that function has an "if (problem) goto out;" >> after >> every krb5 library call. Doesn't that also introduce measurable time >> differences? Interesting. > I wrote a test case with expect to measure the time difference for valid and invalid user with the same workaround as said before. It seems to

Hello. Nice to meet you. My name is Seung Jae Lee, a graduate student in UIUC CEE, who is working in NCSA for the present. Nowadays I am trying to develop LLVM backend to spit out CHiMPS assembly code. In the process, I installed LLVM codes on my home directory in the host computer. But I don't think it was installed properly. While bootstrapping the LLVM C/C++ Front-End, I met several

Hi ALL, I am running squid with ncsa support. Each user has a username and passowrd to access Internet. Now the probles is that user now can access Internet with his username and password from all the workstations. I do not need it. So, I think if I bind username to ip address, user can access Internet from that particular pc having that ip address. How to do it? -- Thank you Indunil

I'm working on a Java implementation of portions of LLVM and have a question about licensing. The project won't contain any LLVM source code although I can foresee using JNI stubs that link against LLVM libraries. It does however in many cases follow LLVM APIs. From my understanding of the University of Illinois/NCSA license this means: 1. I need to include the copyright notice

Hi all, We have downloaded and made modification to LLVM version 2.7 -- we added new files and modified some existing files. We would like to upload the entire source to GitHub (both our new/modified files as well as the rest of the LLVM files). What would be the best way (legal w.r.t to LLVM license, which is NCSA) to publish the entire source ? Can we simply distribute the entire source under

The problem is for statistics tools like Webalizer, which is expecting CLF log format Common Log Format (CLF) "%h %l %u %t \"%r\" %>s %b" NCSA extended/combined log format "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" Referer log format "%{Referer}i -> %U" Agent (Browser) log format

If a move toward machine-independent representation seems reasonable, it may be worth looking at some of the binary data exchange formats used by nasa and others, CDF http://nssdc.gsfc.nasa.gov/cdf/cdf_home.html netCDF http://www.unidata.ucar.edu/packages/netcdf/index.html HDF http://hdf.ncsa.uiuc.edu/ There may also be something useful in the "Scientific Data Format Information

The question puzzled me at first, because of your use of "library". It looks as if the hdf5 r "package" utilises the "windows hdf5 library" binary. My reading is that you will have to compile the package yourself after you have downloaded the hdf windows dll from hdf.ncsa.uiuc.edu The instructions are in win.readme.txt of the package source which you can download at

Dear R-user group I am currently running R-0.90.1-1 for LinuxPPC on my PowerBook. Few days ago I have seen at CRAN that a new R-package exists, namely R-base-with-hdf5-0.90.1-2. Sorrowly, I could not find any explanation, what the difference to the other package is. I have downloaded the "Introduction to HDF5 Release 1.2" from hdf.ncsa.uiuc.edu/HDF5. It seems that HDF5 is a data