similar to: Omission in sshd_config man page

Thanks for these 3rd party hacks! I don't trust them. There must be such feature in openssh out of box. So the most secure/easyer method of giving sftp access to porn collection is: Damiens sftp-server chroot patch, which I hope to see in openssh one day :) http://marc.info/?l=openssh-unix-dev&m=116043792120525&w=2 # useradd -d /data/p0rn -m share /etc/ssh/sshd_config: Match user

My description of the incorrect use of the term ''SNAT'' on the Static NAT Webmin page was apparently misunderstood. Attached is a patch against the Webmin-1.070 Shorewall module that corrects this problem and also adds the ''DNAT-'' action for rules. To apply the patch, you will need the ''patch'' utility: cd <webmin shorewall directory - on

Hi, I am trying to estimate a VECM without constant using the following code: data(finland) sjf <- finland sjf.reg<-ca.jo(sjf, type = c("eigen"), ecdet = c("none"), K = 2,spec=c("transitory"), season = NULL, dumvar = NULL) cajools(sjf.reg) While the cointegration test does not use a constant, it is used in the cajools which I do not want. I am sure I am

I can't figure out how to get the "summary" method in the URCA package to work. E.g. when I use the following code fragment in the help for the "ca.jo" function, it always tries to use the "summary" method from the "base" package, not the "urca" package. How do I force it use the "summary" method of the "urca" package?

Hope ya'all can help! Been reading and reading, and adjusting... to no avail. We need to have chroot'd SFTP activities logged on a file server and for whatever reason, I simply cannot get it to log with users that are chroot'd (this is necessary for auditing and HIPAA - so it is pretty important) I have tried with Fedora 11/12 and even an older Fedora 8 server, the same results: 1.

Hello, First, a big thank you to the OpenSSH devs. _ /Problem Summary:/ _ Chroot and SELinux don't get along. This affects both the new (official) ChrootDirectory feature, as well as the older (3rd party) patch at http://chrootssh.sourceforge.net/. _ /History and repro:/ _ On March 21, 2008, Alexandre Rossi posted to this list with the subject: "*ChrootDirectory

Im running in a chroot'd environment: RH 9.0 lame-3.93.1 icecast-2.0.0 LiveIcePatched-1.0.0 xmms-1.2.7 I was able to get icecast running on port 8000, I was able to get liveice compiled and can see the .so file within xmms. Im pretty sure I have xmms configured to match my icecast config(passwords and mount points for source match). When I start up xmms I get the following error in my

OH MAN THANK YOU!!! I have been pulling my hair trying to get this $hit to work for weeks now. What other DSPs do you recommend instead of LiveIce? Either that or when do you expect the patch to be released? Thank you so much!!! DK > -----Original Message----- > From: Michael Smith [mailto:msmith@xiph.org] > Sent: Wednesday, February 18, 2004 4:35 PM > To: icecast@xiph.org >

Earlier this evening, I had the interesting experience of shutting down my machine (because of that lp out-of-sync problem, discussed elsewhere), and watching it not come back up. I admit that I changed out one of my DVD writers for another one, but I don't understand how that could have had any effect on this: When I restarted the machine, it came up to the point where it normally shows:

I have a need to have users SSH into a server where they are limited to a chroot jail (sandbox). Once they are there, they need to be able to execute 'ssh' and 'scp' to other systems. I've no problem setting up the basic chroot jail and providing basic functionality (ls, cat, less, etc). The part that is stopping me is setting it up so that that user can then 'ssh'

https://bugzilla.mindrot.org/show_bug.cgi?id=3658 Bug ID: 3658 Summary: Wrong comment in /etc/ssh/sshd_config Product: Portable OpenSSH Version: 9.6p1 Hardware: Other OS: Illumos Status: NEW Severity: minor Priority: P5 Component: sshd Assignee: unassigned-bugs at mindrot.org

Hi. I wonder if it would be possible to implement support for a user-specific sshd_config. The primary reason is that I would like the ability to specify that I'm only allowed to login with a key pair, even though the system-wide sshd configuration still allows passwords for other users. Of course, a user-specific sshd_config file should not be able to break the security policy of the

How difficult would it be to add an additional parameter to the -t that would *lock* the user at that directory level. say -T instead of -t... By locking, I mean translating /path/to/file as ./path/to/file, or ../../../path/../../../path/to/file as ./path/to/file. Basically set a root point as the current home directory, then build the pathing based on that, any "../" would become

Pete - Thanks for the hack, I've gone in an adjusted the necessary lines(Even though my C is REALLY rusty, cut and paste to the rescue), I re-compiled the source, so hopefully things will work once I get home to test. You mentioned that I shouldnt use this for a Public Production server, is there any other security measures I can take to override this exploit? I had planned on running it

The sshd server has what I think is a serious flaw. There appears to be no way to turn off remote command execution. (someone please correct me if I am wrong). We have a server which uses a chroot jail, and rbash to severely limit what users can do on our system. The remote command bypasses all of that. ie. ssh user at host cat /etc/passwd will display the password file for the live system

Hi, when trying to install openssh I get the following errors. Any idea of why? This is on a mac 10.4.10 system, and with the 4.7p1 version. Appreciate any tips. Thanks, Anil if test ! -z ""; then \ /usr/bin/perl ./fixprogs ssh_prng_cmds ; \ fi (cd openbsd-compat && make) make[1]: Nothing to be done for `all'. gcc -g -O2 -Wall -Wpointer-arith -Wuninitialized

Hi, I found what seems to be a bug in smbd (and smbclient?) from samba-2.2.8a-1. Scenario is the following: All users have accounts in linux box "mate", with homes mounted via NFS from linux box "fserver". mate and fserver run samba-2.2.8a-1, mate ONLY validates passwords and has no shares; fserver in turn, ONLY shares [homes] and [netlogon], but has no users, so samba uses

On 2017-05-18T13:13, mh at ow2.org <mh at ow2.org> wrote: > Le 18/05/2017 ? 12:17, mh at ow2.org a ?crit : > > However, I get uid/gid numbers instead of names within sftp session (ls > > -l) ? I don't know if it's new but I would definitively prefer names... > > It seems the reason is : > > open("/etc/passwd", O_RDONLY|O_CLOEXEC) = -1 EACCES

I have two actions, that I want to use the same template. However, the template is stored in a non-stardard location (a subdirectory under views/<controller>). My original code looked like: def edit_member <do stuff here> render :template => "path/to/template/edit_member" end def add_member <do stuff here> render :action => :edit_member end The

Where/how in CentOS can I get a nice list of all the usernames on the system? -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20070712/3bd17215/attachment.html>