similar to: Protocol 2 AfsTokenPassing

The native authentication methods of openssh are (not counting insecure RhostsRSAAuthentication) 1) public key 2) password For users with home dirs in AFS space, method 1) does not work. Except with (non foolproof) fiddling on the access controls within the home directory. This might lead to security issues when done by inexperienced users. Without some work, only 2) remains. Being forced to send

These Scripts at location /afs/rrz.uni-koeln.de/wsadmin/contrib/ : Init-ssh2 krb5gettoken xauthrc ssh2 enable credential (krb5 ticket) passing and get you a PAG and AFS token on subsequent login. This should work with any ssh. NO patches. Enjoy & send bugs/cents to: Laatsch at Uni-Koeln.DE Best regards Rainer Laatsch

Some default setting have changed. Use: testparm -v from your various versions of samba to detect which parameters may be causing you issues. ------------------------------------------------------------------------ Tony Hoover, Network Administrator KSU - Salina, College of Technology and Aviation (785) 826-2660 "Don't Blend in..."

Second try via NNTP: ;-) After updating samba to the new version 3.6.0 on my Linux systems at home and at work, I found the problem that I could not delete files on my shares. This did not occur on the home system, but only on the work system, so I looked for differences between the two. I found that the usage of non-encrypted passwords triggers the problem. I use this on my work system,

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=521 Summary: [patch] - some changes to runme script Product: netfilter/iptables Version: patch-o-matic-ng Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: unknown AssignedTo: laforge@netfilter.org

Hello! I have a question how about JIT-ed code and the C++ compiler compatibily. My project (www.baadengine.org) will use llvm and we will provide integration of JIT-ed code directly into C++ code. This means that C++ code can call JIT code just like any other code and JIT-ed code can call C++ code. We will compile to your bytecode from our BSF format. The question is if it is possible this

On Sun, 2003-03-16 at 19:24, Ted Faber wrote: > On Fri, Mar 14, 2003 at 02:48:26AM -0500, Andrew J Caines wrote: > > Starting the server as normal with xinit gives normal startup messages, then fails > > with a signal 11: > > I have this problem, too. Same nv server. I'm happy to provide > details. One that might help is that this is an Athelon XP 1800. > >

Hello, This matter seems to be asked every now and then, but I couldn't find if there is a solution today: I had a need (due to compatibily reasons with old Netware server) provide a way to get access rights and _group_ownership_ for a file / directory / whole directory tree, based on the group ownership of the parent directory where the object is *moved* to. By default, the group ownership

Hi, I'm new to mailing lists, so don't argue if I do sth wrong... I'm coding on a C++ game with Vorbis- and 5.1-Surround-compatibily. For two channels (stereo), everything's fine, but when I try to read a 6-channel-ogg, ov_read returns -131 (OV_EINVAL). That's strange, because as the specification says, it only returns OV_HOLE or OV_EBADLINK as errors [1]. Have I missed

http://bugzilla.mindrot.org/show_bug.cgi?id=234 Summary: OpenSSH does not compile on OpenBSD 3.1 Product: Portable OpenSSH Version: -current Platform: ix86 OS/Version: OpenBSD Status: NEW Severity: normal Priority: P1 Component: Build system AssignedTo: openssh-unix-dev at mindrot.org

With a little help, I managed to get ssh to compile. (original post 05.02.02) Now, I can login using an account that is local to the target machine but logins with AFS accounts fail. The details: IRIX 6.5.15 ssh 3.1.p1 gcc 3.0.1 ssl-0.9.6c zlib-1.1.4. I am configuring with: env CC=gcc CFLAGS=-g LDFLAGS=-Wl,-rpath,/usr/local/krb4/lib,-rpath,/usr/local/ssl/lib ./configure

A buffer overflow exists in OpenSSH's sshd if sshd has been compiled with Kerberos/AFS support and KerberosTgtPassing or AFSTokenPassing has been enabled in the sshd_config file. Ticket and token passing is not enabled by default. 1. Systems affected: All Versions of OpenSSH compiled with AFS/Kerberos support and ticket/token passing enabled contain a buffer overflow.

A buffer overflow exists in OpenSSH's sshd if sshd has been compiled with Kerberos/AFS support and KerberosTgtPassing or AFSTokenPassing has been enabled in the sshd_config file. Ticket and token passing is not enabled by default. 1. Systems affected: All Versions of OpenSSH compiled with AFS/Kerberos support and ticket/token passing enabled contain a buffer overflow.

In 3.7.1p2, the sshd_config manpage talks about GSSAPICleanupCredentials, while servconf.c uses GSSAPICleanupCreds. Here is a patch: --- openssh-3.7.1p2/servconf.c.orig 2003-12-10 10:43:52.000000000 -0200 +++ openssh-3.7.1p2/servconf.c 2003-12-10 10:44:13.000000000 -0200 @@ -310,10 +310,10 @@ { "afstokenpassing", sUnsupported }, #ifdef GSSAPI {

This is the 2nd revision of the Advisory. Buffer overflow in OpenSSH's sshd if AFS has been configured on the system or if KerberosTgtPassing or AFSTokenPassing has been enabled in the sshd_config file. Ticket and token passing is not enabled by default. 1. Systems affected: All Versions of OpenSSH with AFS/Kerberos token passing compiled in and enabled (either in the

From: Keith Baker <ssh at par.dhs.org> To: openssh-unix-dev at mindrot.org Subject: Password Login Failing... I am attmepting to install ssh/sshd on my RH6.1 Intel Box. Everything seems to be working (not quite smooth sailing - I had to resort to precompiled RPM for OpenSSL). I did however get it "working." I generated a host key as root and then changed back to joe-user. I

I'm using a OpenSSH 3.0.2p1 with the krb5 patch from <http://www.sxw.org.uk/computing/patches/openssh.html>. I'm getting KRB5CCNAME set to "" even though <http://marc.theaimsgroup.com/?l=openssh-unix-dev&m=98269278629018&w=2> mentions fixing it. This causes things like kinit to fail with a somewhat uninformative error message. The relevant sshd_config lines

This is the 2nd revision of the Advisory. Buffer overflow in OpenSSH's sshd if AFS has been configured on the system or if KerberosTgtPassing or AFSTokenPassing has been enabled in the sshd_config file. Ticket and token passing is not enabled by default. 1. Systems affected: All Versions of OpenSSH with AFS/Kerberos token passing compiled in and enabled (either in the

Appologise if this did make it to the list but I just subscribed and didn't see it come back... I am attmepting to install ssh/sshd on my RH6.1 Intel Box. Everything seems to be working (not quite smooth sailing - I had to resort to precompiled RPM for OpenSSL). I did however get it "working." I generated a host key as root and then changed back to joe-user. I created a key for

Hello, I going to use ssh with Kerberos V5 support along with support for AFS. I don't want to use Kerberos V4 or AFS token passing. The only thing I need from AFS is creating an AFS token (using appropriate function from krb5 API) after user's authentication. It seems to me that such scenario is not much supported by the current code. Rather it is assumed only Kerberos 4 will be used