Displaying 20 results from an estimated 2000 matches similar to: "not being released"
2015 Feb 27
2
remote-remote scp
Hi everyone,
I know scp is kind of the red-headed stepchild of the suite, but I'd like to propose an extension to the syntax for remote-remote passthrough using the "-3" option.
Currently the syntax is essentially
scp -3 [ -P port ] [user@]host1:file [user@]host2:file
This is great, as long as both remotes are on the same port. It causes difficulties if host1 and host2 are not
2016 Aug 09
3
Equivalent ssh_config setting for "ssh -N"
Oops. That's -T. From the man page, it doesn't really look like there's an ssh_config option for -N.
-----Original Message-----
From: openssh-unix-dev [mailto:openssh-unix-dev-bounces+scott_n=xypro.com at mindrot.org] On Behalf Of Scott Neugroschl
Sent: Tuesday, August 09, 2016 1:04 PM
To: Volker Diels-Grabsch; openssh-unix-dev at mindrot.org
Subject: RE: Equivalent ssh_config
2018 Apr 13
3
OpenSSH 7.7 t1 script breakage
On 13/04/18 07:59, Josh Soref wrote:
> Randall S. Becker <rsbecker at nexbridge.com> wrote:
>
>> -REGRESSTMP = "$(PWD)/regress"
>> +REGRESSTMP = `pwd`
>>
>> ? tests interop-tests t-exec unit: regress-prep regress-binaries
>> $(TARGETS)
>>
> It looks like the problem is that pwd is in uppercase, not so much the
> distinction between
2016 Aug 09
4
Equivalent ssh_config setting for "ssh -N"
Dear OpenSSH developers,
Is there an equivalent ssh_config setting for the command line option
ssh -N ...
?
I want to connect to a server that doesn't provide an interactive
shell but allows for port forwarding only. I'd love to configure
this into my ~/.ssh/config as follows:
Host foo
Hostname ...
Port ...
User ...
LocalForward ...
2008 Jul 30
1
5.1p build problem on SCO OSR6
Build of 5.1p1 fails on SCO OSR6 with the error:
UX:acomp: ERROR: "addrmatch.c", line 100: undefined struct/union member: sin6_scope_id
configure checks for presence of struct sockaddr_in6 and uses the system
declaration if found (via #define HAVE_STRUCT_SOCKADDR_IN6 in config.h)
If not found, the struct is declared in openbsd-compat/fake-rfc2553.h.
OSR6 has struct sockaddr_in6 but it
2008 Jun 12
2
Inconsistency with the option for defining the destination port
Why is there an inconsistency with the option for the destionation port.
ssh -p <port> ...
scp -P <port> ...
sftp -P <port> ...
For scp it is neccessary to be "-P" ( Quote: " Note that this option is
written with a capital 'P', because $B!](Bp is already reserved for preserving
the times and modes of the file in rcp(1)." ).
Also sftp uses already
2017 Apr 21
2
Include for sshd_config
On Thu, Apr 20, 2017 at 11:00 AM, Scott Neugroschl <scott_n at xypro.com> wrote:
>
> On Wed, Apr 19, 2017 at 1:02 PM, navern <livingdeadzerg at yandex.ru> wrote:
>
>> Is there any available tool with this for pre-evaluating the resulting sshd_config for fatal errors? I'm not demanding: I'm thinking "that could be really, really useful".
>
>
2008 Aug 21
2
IP options
I'm seeing something similar to bug 1179
(https://bugzilla.mindrot.org/show_bug.cgi?id=1179), even with the
reordered IP options check.
For some reason, getsockopt is returning an IP options of length 2,
value 00 00.
Would Mark Weindling's original patch
(https://bugzilla.mindrot.org/attachment.cgi?id=1105) break anything if
I incorporated it?
Platform: HP NonStop S7000 series
2009 Aug 31
1
mput/mget misbehavior
A couple of notes about mget/mput in SFTP (5.1p1).
1. They aren't documented in the SFTP man page
2 They misbehave --
"mput a.txt b.txt" copies a.txt to b.txt on the server
"mput *.txt b.txt" copies the first wildcard match to b.txt on
the server
"mput a.txt b.txt c.txt" copies a.txt to b.txt on the server
"mput a.txt
2009 Oct 26
1
SCP
I'm using 5.0p1 (Yeah, yeah. I know.). For various reasons, I am unable
to upgrade to the latest and greatest, which probably would solve my
problem.
Here's my question.
When doing an scp from remote to local (e.g.: scp user at host:remote
localfile), is there any way to specify the path to the remote scp? Or
do I have to patch the code to allow it?
----
Scott
2015 Jul 22
7
Keyboard Interactive Attack?
I read an article today about keyboard interactive auth allowing bruteforcing.
I'm afraid I have minimal understanding of what keyboard-interactive really does. What does it do, and should I have my clients set it to off in sshd_config?
---
Scott Neugroschl | XYPRO Technology Corporation
4100 Guardian Street | Suite 100 |Simi Valley, CA 93063 | Phone 805 583-2874|Fax 805 583-0124 |
2012 Nov 20
4
Connection info with AuthorizedKeysCommand
I see that support for AuthorizedKeysCommand has been added. The
arguments supplied to the command is just the authenticating user. Can
we add the SSH connection details (ie. source and destination IPs and
ports) as well?
This command seems to be the idea way of requiring one set of
credentials from inside an organisation (say the user's own
authorized_keys file) and another set from outside
2015 Feb 06
3
Re: Creating users "on - the - fly"
>> However - as I got into that - I realized that I have no way to "find"
>> just the keys for a single user. Since the only argument to that ssh
>> keys command, is the username. It's not HTTP so I couldn't point at a
>> subdomain and use that to look up the information.
>You may be interested in the bug report "extend the parameters to the
2010 Apr 15
4
Limit number of connections per user?
I'm working from modified 5.0p1 codebase.
What I'm looking for is a mechanism to limit the number of simultaneous
connections on a per-user/IP basis.
That is, disallow multiple simultaneous logins/authentication of the
same user from different IP addresses.
e.g.:
fred from 10.1.1.1 - accept
fred from 10.1.1.2 -- reject while fred is still connected from 10.1.1.1
fred from 10.1.1.1 - OK
2013 Sep 24
1
Port Knocking?
I haven't been keeping up with the internals, I'm afraid. Does OpenSSH have support for Port Knocking?
I might be interested in looking into that, as a way of reacquainting myself with the current code base.
---
Scott Neugroschl | XYPRO Technology Corporation
4100 Guardian Street | Suite 100 |Simi Valley, CA 93063 | Phone 805 583-2874|Fax 805 583-0124 |
2014 Mar 06
2
Without OpenSSL?
Quoth Iain:
>I'm not sure if the work being done to allow OpenSSH to be built without OpenSSL includes SHA-1 support.
Hi Iain. I haven't heard of this effort before. Can you give a few more details?
Thanks,
ScottN
---
Scott Neugroschl | XYPRO Technology Corporation
4100 Guardian Street | Suite 100 |Simi Valley, CA 93063 | Phone 805 583-2874|Fax 805 583-0124 |
2008 Jul 16
3
openssh 5.0p1: Solaris - Failed to allocate internet-domain X11 display socket.
On Solaris 10 (SPARC & x86), I'm seeing the following error:
error: Failed to allocate internet-domain X11 display socket.
I tracked this down to this code change between openssh 4.7p1 and
5.0p1:
*** openssh-4.7p1/channels.c Mon Jun 25 03:04:47 2007
--- openssh-5.0p1/channels.c Wed Apr 2 15:43:57 2008
***************
*** 1,4 ****
! /* $OpenBSD: channels.c,v 1.270 2007/06/25 08:20:03
2015 Jul 22
2
Keyboard Interactive Attack?
You need to disable ?ChallengeResponse? (aka keyboard-interactive) authentication, not password authentication, to protect against this attack.
On Jul 22, 2015, at 1:56 PM, Bostjan Skufca <bostjan at a2o.si> wrote:
>
> And to answer your question about what to do, you have three options:
> - disable access to ssh with a firewall
> - disable password authentication
> -
2018 Apr 10
4
Signed SSH key issue with OpenSSH6.4p1
Hi All,
Please pardon me if it is the wrong list to ask how-to etc.
I am having an issue with the Signed SSH keys. I am being asked for the
passphrase for my signed public key, even though I don't have any.
I am running CentOS7 with OpenSSH_6.4p1, OpenSSL 1.0.1e-fips 11 Feb 2013.
1) I have ca server with ca user keys (ca-user-key.pub)
2) I created user ssh rsa keys (user-id-org and
2015 Apr 01
3
What did I miss when building openssh? cannot generate ecdsa key
I am assuming this is a user error (and the bug, if any is in configure not
telling me how to activate it).
I regularly see a message:
Could not load host key: /etc/ssh/ssh_host_ecdsa_key
And, obviously, I have never made the key before.
I tried the following:
./ssh-keygen -t ecdsa -fssh_host_esdsa_key -N ""
unknown key type ecdsa
However, the syntax says it is a known type
root at