similar to: Announce: X.509 certificates support v7.2 for OpenSSH version 6.0p1

Hello, running Coccinelle (http://coccinelle.lip6.fr/) on the DragonFly source tree with a patch to find issues of this kind turned up this one. Please see the attached diff (against OpenBSD). Regards, Sascha

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1692 The NIST advisory says that all versions of OpenSSH potentially contain the flaw. ?But is that really true? ?For example, I looked at the 3.8.1p1 distribution and didn't find any reference to JPAKE at all. Thanks.

Hello All, In reviewing source code for OpenSSH-6.1p1, I found instances of deprecated library calls still within various source code files. Examples of deprecated calls are: bzero() (replaced with memset() which is ANSI compliant), index() (replaced with strchr() which is also ANSI compliant). In file 'auth2-jpake.c', I've replaced all the bzero() calls with the equivalent

The patch to enable FIPS mode for openssh 6.0p1 missed two instances of the ssh client trying to use MD5. It causes pubkey-based authentication to fail in FIPS mode. I have copied the missing changes from auth2-pubkey.c into sshconnect2.c. Here is a patch: diff -cr openssh-6.0p1/sshconnect2.c openssh-6.0p1-patched/sshconnect2.c *** openssh-6.0p1/sshconnect2.c Sun May 29 07:42:34 2011 ---

Attached to this e-mail is a patch that is likely familiar to many people on this mailing list;? It's essentially the RedHat FIPS patch updated to work with the newer release of OpenSSH.? I'm hoping it will prove useful to someone; please let me know if you have any comments or see any errors. Thanks, Jonathan

Hello all Support for Secure Remote Password (SRP) for OpenSSH was last discussed in 2004: http://marc.info/?l=openssh-unix-dev&w=2&r=1&s=SRP&q=b There's a SRP patch for OpenSSL that's about 2 years in the making: http://rt.openssl.org/Ticket/Display.html?id=1794 Tom Wu from Stanford has been working on that. Has anything changed since 2004 that would make inclusion

Hello, We'd like to allow passwords only from the local network, and allow public key auth from on-campus or off-campus. The server runs SuSE Linux, and we might do the same on RHEL/CentOS & Mac OS X if we can get it to work. Unfortunately, Match allows PasswordAuthentication but not ChallengeResponseAuthentication. Is there any reason ChallengeResponseAuthentication cannot be

Trying on my Arch machine I get one step further. The splash screen pops up. Then it dies and this is the console output: Code: WINEPREFIX=/home/thom/.wine-poker wine ICMTrainerLight.exe Could not parse file "/home/thom/.local/share/applications/Hattrick Organizer.desktop": Invalid key name: Path[$e] Could not parse file

The following patch corrects a portablility issue when compiling openssh 6.0p1 on MirOS (aka. mirbsd). The issue is: sftp-server.c: In function `send_statvfs': sftp-server.c:510: error: request for member `val' in something not a structure or union sftp-server.c:510: error: request for member `val' in something not a structure or union The patch is: --- configure.ac.orig 2012-04-19

https://bugzilla.mindrot.org/show_bug.cgi?id=1963 --- Comment #5 from martin f. krafft <bugzilla.mindrot.org at pobox.madduck.net> --- With reference to http://bugs.debian.org/650512, which I just reopened, I am sorry to say that the bug persists in OpenSSH 6.0. -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the

https://bugzilla.mindrot.org/show_bug.cgi?id=2030 Priority: P5 Bug ID: 2030 Assignee: unassigned-bugs at mindrot.org Summary: build of 6.0p1 fails @ "/usr/bin/ld: unrecognized option '-Wl,-rpath,/usr/local/ssl/lib64" Severity: major Classification: Unclassified OS: Linux Reporter:

When running "configure" for openssh-6.0p1 , I got the following output from "configure": configure: WARNING: linux/filter.h: present but cannot be compiled configure: WARNING: linux/filter.h: check for missing prerequisite headers? configure: WARNING: linux/filter.h: see the Autoconf documentation configure: WARNING: linux/filter.h: section "Present But Cannot

I am trying to build a static version of ssh, sshd and sftp, but after banging my head against the wall for the best part of the last 3 days I am about to give up... Since I plan to use this on an embedded device (building dropbear is *NOT* an option!), I've excluded as many openssh configure options as I can but, ultimately, failed. This is my setup: export LDFLAGS=' -pie -z relro -z

After downloading the latest CVS head and testing it with the Cisco 7960 (SIP v7.2), it appears that it's still necessary to patch rtp.c to avoid audio dropouts. I'm quite sure my gateway provider is running an older version of Asterisk, and I suppose that this may be the root cause. But I mention the issue here because it seems like it would be a mistake to ship Asterisk 1.0 if it

I have compiled openssh for sun solaris 2.6, no errors When I try to run SSHD daemon it says the following error. This platform does not support both privilege separation and compression Compression disabled Privilege separation user sshd does not exist Any one that have answer to this problem mail me on daniel.d.olsson at telia.se <mailto:daniel.d.olsson at telia.se> //Daniel

Dear Asterisk Users, Are there any documentation that teach how to using Digium Cards to setup a PABX system? Thanks, Randal

Hi, Is FIPS 140-2 patch for openssh 6.3.p1 available somewhere or do I have to make one using http://www.openssl.com/export/openssh/openssh-6.0p1.fips-revised.patch ? Regards, Manish

https://bugzilla.mindrot.org/show_bug.cgi?id=2034 Priority: P5 Bug ID: 2034 Assignee: unassigned-bugs at mindrot.org Summary: make fails Severity: critical Classification: Unclassified OS: FreeBSD Reporter: kris.universe at gmail.com Hardware: amd64 Status: NEW Version: 6.0p1

Dear R helpers, running the following code of a glm model of the family poisson, gives predicted values < 0. Why? library(MASS) library(stats) library(mvtnorm) library(pscl) data(bioChemists) poisson_glm <- glm(art ~ fem + mar + kid5 + phd + ment, data = bioChemists, family = poisson) predicted.values = predict(poisson_glm) range(predicted.values) Thank you in advance for any hints.

We are currently using cvs for both source and ports. I have begun changing to portsnap for ports, and I would also like to try changing at least some of our servers to freebsd-update. But all servers have been patched, using either RELENG_8_3 or RELENG_9_0 as cvs tag. I need to revert them to their respective RELEASE to be able to use freebsd-update. Complete reinstall from eg CD is not an