similar to: Match Statement in sshd_config

hi folks: it looks like ssh-keygen -r can''t export SSHFP records for ECDSA keys: 0 dkg@pip:/tmp/cdtemp.oiRYAS$ ssh-keygen -f foobar -t ecdsa -q -P '''' 0 dkg@pip:/tmp/cdtemp.oiRYAS$ ssh-keygen -r foobar -f foobar.pub export_dns_rr: unsupported algorithm 0 dkg@pip:/tmp/cdtemp.oiRYAS$ the first number in my prompt is the return code of the last command; note that

There seems to be a problem with the LLVM Cygwin configuration. Cygwin does not support the RLIMIT_RSS symbol. llvm[1]: Compiling Program.cpp for Debug build /usr/src/llvm/lib/System/Unix/Program.inc: In function 'void llvm::SetMemoryLimi ts(unsigned int)': /usr/src/llvm/lib/System/Unix/Program.inc:123: error: 'RLIMIT_RSS' was not decla red in this scope make[1]: ***

https://bugzilla.mindrot.org/show_bug.cgi?id=1663 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED --- Comment #33 from Damien Miller <djm at mindrot.org> --- mark bugs closed by openssh-6.2 release as

Hi, Currently using openssh-4.5p1 on Solaris 8 in conjunction with Oracle 8i dataguard. Is there a patch available to prevent ssh returning status code 255 for a successful execution of a remote connection/command. Many Thanks, Tim Mann

https://bugzilla.mindrot.org/show_bug.cgi?id=1506 Summary: rationalize agent behavior on smartcard removal/reattachment Product: Portable OpenSSH Version: 5.1p1 Platform: Other OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: Smartcard AssignedTo:

Hi Aaaron, On Sun, 2007-02-18 at 19:50 +0000, Aaron Gray wrote: > In order to get Cygwin working there is a need to add a > HAVE_RLIMIT_RSS and associated logic. This was just recently added. Does cygwin even have getrlimit and setrlimit? IIRC correctly, it doesn't. So, perhaps these functions need to be written differently for Cygwin. What's the equivalent win32 call? If cygwin

Hi, could somebody be so kind to check in the follwoing patch? It fixes two problems: - contrib/cygwin/Makefile: Installs new docs and stops trying to install RFC.nroff. - contrib/cygwin/ssh-host-config: Fixes a condition which tries to find out if ssh or sshd processes are still running. The old version unfortunately stumbles over user names which contain the substring

I guess I didn't want to litter the users table either - it just seems "wrong" to be actually adding things to the host when it is really so transient. It feels like it should be LDAP-ish. Just ask the server for the keys and do a one-off authentication. But I've seen even LDAP creates the user directories. I see that 2.6 kernels can have some 4B users, which should last me a

In order to get Cygwin working there is a need to add a HAVE_RLIMIT_RSS and associated logic. Aaron ----- Original Message ----- From: Aaron Gray To: LLVM Developers Mailing List Sent: Sunday, February 18, 2007 7:00 PM Subject: [LLVMdev] LLVM Cygwin build RLIMIT_RSS configuration problem There seems to be a problem with the LLVM Cygwin configuration. Cygwin does not support the

This may well actually be a problem with the Cygwin getgid() function. Aaron ----- Original Message ----- From: Aaron Gray To: LLVM Developers Mailing List Sent: Sunday, February 18, 2007 7:00 PM Subject: [LLVMdev] LLVM Cygwin build RLIMIT_RSS configuration problem There seems to be a problem with the LLVM Cygwin configuration. Cygwin does not support the RLIMIT_RSS symbol.

On Fri 2015-02-06 14:30:13 -0500, Cary FitzHugh wrote: > Hence - maybe a NSS User Database extension which looks for the > public keys from a webservice (and then maybe writes them to > /tmp/<username>. No, i'm suggesting that when you want to look up the user, use NSS to find the username and map it to a numeric user ID and the other information that is typically found in

hi, ive read through the last few posts with people having problems compiling the asterisk-addons for mysql support, and none of them have helped me resolve my compile problem. I currently have -- CVS-06/24/04-22:20:31 and downloaded asterisk-addons. I compiled * first then asterisk-addons, have added CFLAGS+=-I../asterisk/include When I try to make install for asterisk-addons i get

Hi Aaron, On Sun, 2007-02-18 at 20:43 +0000, Aaron Gray wrote: > Hi Reid, > > Cygwin 'sys/resource.h' has get/setrlimit() functions support for > RLIMIT_DATA and RLIMIT_AS but not RLIMIT_RSS. Then, please fix it to not use RLIMIT_RSS in the cygwin case. Perhaps you should just use RLIMIT_AS for cygwin. It will trigger sooner than RLIMIT_RSS but that's probably okay.

https://bugzilla.mindrot.org/show_bug.cgi?id=1984 Bug #: 1984 Summary: Add Unix Domain Socket Forwarding Classification: Unclassified Product: Portable OpenSSH Version: 5.9p1 Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: ssh AssignedTo:

Yes, I have tried that option with no difference in behavior. It seems it ignores that option when provided. Just for reference, I am building it on RedHat 5. I have never had this issue on any previous version of OpenSSH. I use the default configuration with only the changes specified in the RHEL 5 STIG applied. I appreciate the security advice. The root account was indicated simply as an

Hello, I'm trying to build a valid public ssh v2 RSA key from a java application but I have some problems understanding how the two numbers (e and n) are base64 encoded into ~/.ssh/id_rsa.pub or ~/.ssh/authorized_keys2 file. My question is what exactly is encoded into the base64 string? For example for this public key: ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6p76zG+8aOkFZT1y4O+Y7n

Greetings everyone! I would like to know if adding support for Unix socket to sshd would be a feature that would be consider to be added upstream? (ListenAddress). One of the main reason for this question to you all is that tor now has Unix socket support for hidden services that is traffic of a hidden service can be forwarded to a Unix socket (see HiddenServicePort in tor.1). The rationale

Hi openssh dev's, I love an truly appreciate the Socket forwarding feature in OpenSSH 6.7. i use it for forwarding the socket of GnuPG's agent (that handles the secret stuff) to remote machines. Usecase: ====== I am a remote worker and use gnupg agent forwarding to connect to our company infrastructure that makes heavy use of PGP encryption while keeping my key out of the hands of

https://bugzilla.mindrot.org/show_bug.cgi?id=1759 Summary: allow display of bubblebabble fingerprint when connecting Product: Portable OpenSSH Version: -current Platform: All URL: http://bugs.debian.org/578422 OS/Version: Linux Status: NEW Severity: enhancement Priority: P2

Hi all. I have a situation that I wonder someone may have run into - or has a direction I should dig / develop in. Let's say I have a system with 1M "users". Their public keys are stored in a database, and I can access them via a web call. I have a few servers which should allow those users access. Some constraints to make it non-crazy. The users can only reverse tunnel. They