similar to: Pam module leaks information

Hello All, The changing of group for the root results in the following message with OpenSSH 3.9p1 "permanently_set_uid: was able to restore old [e]gid" The following change in uidswap.c fixes me the problem. /* Try restoration of GID if changed (test clearing of saved gid) */ - if (old_gid != pw->pw_gid && + if(getgid() != pw->pw_gid && (setgid(old_gid)

http://bugzilla.mindrot.org/show_bug.cgi?id=1049 Summary: Variable delay in password logins to fight dictionary attacks Product: Portable OpenSSH Version: 3.8.1p1 Platform: ix86 OS/Version: Linux Status: NEW Severity: enhancement Priority: P2 Component: sshd AssignedTo:

Hello All, Im using OpenSSH 4.2p1 statically linked with OpenSSL 0.9.7i. It looks now that a fips certified OpenSSL is now available at http://www.openssl.org/source/OpenSSL-fips-1.0.tar.gz . I like to know of any patches applicable for OpenSSH versions to make it fips compliant. Is there any idea for OpenSSH core team to make OpenSSH as fips compliant? What amount of work it needs at this

On 27 Oct 2015, at 09:48, Senthil Kumar <senthil.thecoder at gmail.com> wrote: > > Haven't worked on this yet, but I work on the gcc AVR backend (and binutils), and I'm very interested in this - I intend to work on it in my spare time. And do you have any comments / objections to Dylan becoming the code owner? David

Hello All, Im using OpenSSH-3.9p1 configured for PAM,krb etc.. When I use Key based auth methods such as Public key,gssapi etc, this skips the pam_authenticate() call and directly calls pam_acct_mgmt(). This results in a failed attempt with few of my own PAM modules. Is there any way to implement this facility to be controlled by a directive in sshd_config. I mean PAM calls should not be

Hi All, Can anybody suggests how can I disable netfilter for bridged traffic in linux-2.4.27 kernel ? Thanks and Regards, Senthil

Hello All, I am using OpenSSH 4.x versions. If I try to ssh to a system with a user account and if all my auth methods fails, the client side gets the following message. Permission denied (publickey,password,keyboard-interactive). This looks like an information leak, where a malicious user can detect all the allowed authmethods on the server system. I would like to know if there are some

in our lab we have a kerberos + ldap server to authenticate the gnu/linux users and we have configured samba to work as a PDC authenticating the windows users. samba stores the password in encrypted format in /etc/samba/smbpasswd. The problem is when the password is changed by windows users we need to change the password of kerberos credentials. Is there a way in samba in to do that i.e to

Hello All, As the release notes of SSH-4.7 version says that a new MAC algorithm (UMAC-64 - RFC4418) was introduced with OpenSSH-4.7 which gives much better performance, I was tempted to check out the enhanced speed provided with new version. So I downloaded OpenSSH-5.1p1 and build it on Solaris 10 with Sun Compiler CC. My test setup:- 1. Two Sunfire 440 with 2 CPU (1281 MHz) and 4GB RAM. 2.

Hi, I have the following data: > Myvalues Gene ES MEF Embryo ESHyp 1 GeneA -0.38509507 0.00 1.6250 1.7039921 2 GeneB 0.06262914 0.00 1.6250 -0.272033 and so on... I want to plot the expression values of GeneA and GeneB in the different cell/embryo/conditions (columns 2:5 above). Now, if I do: >library(ggplot2) > qplot(x=Gene, Embryo, geom =

Hi, We are using samba-3.0.28a on linux-2-6-18 with which WinVista, as CIFS client, see the soft limit as hard limit and doesn't allow data transfer. Is there a fix already available for this? If not, could you pls gimme some pointers to fix this issue? Thanks, Senthil M Please do not print this email unless it is absolutely necessary. The information contained in this electronic message

Hello, I am calculating 'Betweenness' of a large network using R. Currently, I have the node-node information (City1-City2) in an excel file, present in two columns where column A has City1 and column B has City2 that city1 is connected to. These are the steps that I go through to calculate betweenness of my network. a) Convert the City1-City2 (text) into Number1-Number2 in the excel

http://bugzilla.mindrot.org/show_bug.cgi?id=975 Summary: Kerberos authentication timing can leak information about account validity Product: Portable OpenSSH Version: -current Platform: All URL: http://marc.theaimsgroup.com/?l=openssh-unix- dev&m=110371328918329&w=2 OS/Version: All

Hi All, Sorry for asking the most repeated question again. Just because I could not get a proper guide for doing this. Can anyone please tell me how to make a linux system running samba server and client to connect ( log on to ) to a windows2000 based domain and act as a part of it ? Any useful link also would do. thanks in advance :-) senthil -------------- next part -------------- HTML

Hi, Just giving phpconfig a try but can't find and setup instructions.. What I have done so far.. 1. Copied the phpconfig files to the web dir on the server. 2. Edited the manager.conf and enabled manager access and setup an accound (really just copied the sample config but set my own username and secret) 3. Made /etc/asterisk/* world writable. (I guess I should have made the owned by

Hi All, I have one question below: How can I create app by specifying the rails version. for example I have local rails gem versions (2.3.5, and 2.3.10) how I can create rails app => 2.3.10 but default rails gem point to 2.3.5. I have google I found that by specifying `rails _2.3.10_ new demo` will help but is not working instead it creating new app in the name "_2.3.10_"

Hello All, I have run into a situation where a user exiting from a PAM_KERBEROS-authenticated session runs the risk of deleting a kinit-generated credentials file that was already sitting on the server. I will explain the problem in detail, but let me begin with my question. It has a specific reference to PAM_KERBEROS, but it can also be a general question. If a user (ssh) session was

Hi, Can anyone please advise if there is a neat way to 'share' libraries of (previously developed) S+ code with R? Specifically, within S+ I can use the attach(what = "<Chapter Directory>", pos = 2) command, to retrieve previously developed functions and variables to position 2 in the search list. [Some may be intentionally masked by what's in the current working

i want to create a single sign on for all the users of windows and GNU/Linux. i have MITkerberos and openldap server for authenticating and authorizing the linux users. I want the users to login from windows machine also and the password to be same when changed from linux or windows machine. ---S.Senthil Kumaran-- Blog: http://sskganesan.blogspot.com

Hello everybody, I would like to know more about runtime & idle time reoptimizer mentioned in the powerpoint presentations about LLVM. Which tool in the LLVM toolchain is responsible for this? Where I can find more details on how reoptimizer is implemented? If someone can let me know any doc or specific source code file to look at, it would be helpful. I have also seen a similar post by