similar to: ControlMaster and packet stuffing

Hey, I have rather new installation of xen, dom0 is running ntpd and is perfectly in time. All domU''s are ~23s in future. Running ntpd on the domU''s seem to have no effect, /proc/sys/xen/independent_wallclock appears to have no effect. I''m running xen-unstable and 2.6.16-rc4 in AMD64 box. Any tip would be appricated. Thanks, -- ++ytti

Hi, It seems there is a problem regarding ControlMaster and scp'ing a file depending on the current working directory: $ cd ~/Personnel $ scp -o ControlMaster=yes cox.jpg host.local: muxserver_listen bind(): No such file or directory lost connection $ scp -o ControlMaster=no cox.jpg host.local: cox.jpg 100% 222KB 222.1KB/s 00:00 $ cd $ scp -o

Dear Mailing List We are using a ControlMaster with a short ControlPersist to access the bastion host which then gives access to customer hosts. Our Information Security Manager would like to disallow the ControlMaster. His attack scenario is an admin workstation with a compromised root account. An attacker can then use the ControlMaster to trivially get shell access on the bastion host

https://bugzilla.mindrot.org/show_bug.cgi?id=2621 Bug ID: 2621 Summary: ControlMaster started by scp (non-ssh?) doesn't forward agent Product: Portable OpenSSH Version: 7.3p1 Hardware: All OS: All Status: NEW Severity: normal Priority: P5 Component: Miscellaneous

https://bugzilla.mindrot.org/show_bug.cgi?id=2414 Bug ID: 2414 Summary: ControlMaster directive should be ignored on Cygwin Product: Portable OpenSSH Version: -current Hardware: Other OS: Cygwin on NT/2k Status: NEW Severity: enhancement Priority: P5 Component: ssh Assignee:

Real networks use either PREC (as it maps 1:1 to 802.1p and MPLS TC) or DSCP. Interactive SSH uses PREC 0x0, which is just best-effort and DSCP 0x4 which has no standard meaning (found network where DSCP 0x4 was dropped, completely, as it didn't hit any defined/allowed QoS class, obviously misconfig, BE class should eat anything not already defined) Should interactive use TOS value which has

I use ControlMaster auto (along with ControlPath) in my ssh config and find it very handy. I have noticed an annoying behavior, though: it seems that if there is no existing master connection and ssh creates a new one, the master connection process that is started has its stderr left open. This has manifested itself in two ways so far: (1) When using ssh day-to-day, I may be doing some work and

https://bugzilla.mindrot.org/show_bug.cgi?id=1382 Summary: scp/sftp sometimes hangs as a ControlMaster slave Classification: Unclassified Product: Portable OpenSSH Version: 4.7p1 Platform: ix86 OS/Version: Mac OS X Status: NEW Severity: normal Priority: P2 Component: scp AssignedTo: bitbucket

Consider this topology domain1-server1 domain2-server2 | | laptop - domain1-server1 ---- domain2-server1 Laptop has two ssh identities, domain1 and domain2. I don't wish to store identity locally in any of the servers. As far as I understand, there isn't any way to limit ssh-agent to allow only signing

https://bugzilla.mindrot.org/show_bug.cgi?id=3743 Bug ID: 3743 Summary: ControlMaster forces ForkAfterAuthentication even when not wanted, and can't be disabled Product: Portable OpenSSH Version: 9.9p1 Hardware: Other OS: Linux Status: NEW Severity: normal Priority: P5

Hi, Not sure if this anyone else is interested in this but to me it seems to make sense to use different control session multiplexer sockets for bulk and interactive workloads. Index: auth.c =================================================================== RCS file: /cvs/src/usr.bin/ssh/auth.c,v retrieving revision 1.94 diff -u -p -r1.94 auth.c --- auth.c 23 May 2011 03:33:38 -0000 1.94 +++

http://bugzilla.mindrot.org/show_bug.cgi?id=1278 Summary: CYGWIN controlMaster connections don't work. Product: Portable OpenSSH Version: v4.5p1 Platform: ix86 OS/Version: Cygwin on NT/2k Status: NEW Severity: normal Priority: P2 Component: ssh AssignedTo: bitbucket at mindrot.org

On Tue, Jan 21, 2020 at 11:08:51AM +1100, Damien Miller wrote: > So IMO disallowing session multiplexing is at most a speedbump that an > attacker will cross with relative ease. Speedbumps make sense sometimes, An attacker getting root on the jumphost gets immediate control of any _current_ persistent connections and new connections. Without ControlMaster it's a _lot_ harder to take

https://bugzilla.mindrot.org/show_bug.cgi?id=2420 Bug ID: 2420 Summary: Race condition regarding ControlPersist and ControlMaster=auto Product: Portable OpenSSH Version: 6.6p1 Hardware: amd64 OS: Linux Status: NEW Severity: normal Priority: P5 Component: ssh

There is a race in the setup of the ControlMaster socket in auto mode, as illustrated by the following command line: ssh -oControlMaster=auto -oControlPath=sock localhost 'sleep 1; echo 1' & ssh -oControlMaster=auto -oControlPath=sock localhost 'sleep 2; echo 2' & Both of the commands will try to start up as a control client, find that sock does not exist, and switch into

Hey, Just a heads up on anyone wanting a quick way to start playing with CouchDB (http://couchdb.apache.org/) and Rails without leaving the comfort of ActiveRecord. Stuffing is a Rails plugin that I wrote to let you access a CouchDB document directly within your ActiveRecord model. The plugin is on GitHub: http://github.com/paulca/stuffing/tree/master I posted a short video screencast intro

https://bugzilla.mindrot.org/show_bug.cgi?id=2437 Bug ID: 2437 Summary: ssh with ControlMaster and ControlPath hangs on 2nd session in same terminal Product: Portable OpenSSH Version: 6.7p1 Hardware: amd64 OS: Linux Status: NEW Severity: normal Priority: P5

https://bugzilla.mindrot.org/show_bug.cgi?id=1938 Bug #: 1938 Summary: EscapeChar sometimes don't work when using ControlMaster Classification: Unclassified Product: Portable OpenSSH Version: 5.8p1 Platform: ix86 OS/Version: Linux Status: NEW Severity: normal Priority: P2

https://bugzilla.mindrot.org/show_bug.cgi?id=1994 Bug #: 1994 Summary: document which settings/etc. get "persistent" with the ControlMaster connection Classification: Unclassified Product: Portable OpenSSH Version: 5.9p1 Platform: All OS/Version: All Status: NEW Severity:

https://bugzilla.mindrot.org/show_bug.cgi?id=1617 Summary: -L & -R do not work for slave ControlMaster connections Product: Portable OpenSSH Version: 5.1p1 Platform: ix86 OS/Version: FreeBSD Status: NEW Severity: normal Priority: P2 Component: ssh AssignedTo: unassigned-bugs