Displaying 20 results from an estimated 900 matches similar to: "Issue With SSHD Password Guesses"
2002 Jun 26
1
Revised OpenSSH Security Advisory (adv.iss)
This is the 2nd revision of the Advisory.
1. Versions affected:
Serveral versions of OpenSSH's sshd between 2.3.1 and 3.3
contain an input validation error that can result in an
integer overflow and privilege escalation.
All versions between 2.3.1 and 3.3 contain a bug in the
PAMAuthenticationViaKbdInt code.
All versions between 2.9.9 and 3.3
2002 Jun 26
0
Revised OpenSSH Security Advisory (adv.iss)
This is the 2nd revision of the Advisory.
1. Versions affected:
Serveral versions of OpenSSH's sshd between 2.3.1 and 3.3
contain an input validation error that can result in an
integer overflow and privilege escalation.
All versions between 2.3.1 and 3.3 contain a bug in the
PAMAuthenticationViaKbdInt code.
All versions between 2.9.9 and 3.3
2002 Jun 25
1
PAMAuthenticationViaKbdInt and KeyAuth
Hi there,
when enabling the option PAMAuthenticationViaKbdInt, a login with password is
always possible, even though when you disabled it with PasswordAuthentication
no and PermitRootLogin without-password!
Is this intended? Why is there no documentation about this (or at least a
waring in the default configuration file)?
The problem is, it is enabled in the default installation of Debian
2004 Apr 07
2
Requiring multiple auth mechanisms
I looked around for a while, but couldn't find any code for requiring multiple
authentication mechanisms in openssh. So I wrote an implemention.
I thought at first I should change the PasswordAuthentication,
PubkeyAuthentication, etc. keywords to allow no/yes/required. But there's some
funky stuff in auth2.c with respect to keyboard interactive auth that would make
this kind of
2002 Jul 01
0
Revised OpenSSH Security Advisory
This is the 4th revision of the Advisory.
This document can be found at: http://www.openssh.com/txt/preauth.adv
1. Versions affected:
Serveral versions of OpenSSH's sshd between 2.3.1 and 3.3
contain an input validation error that can result in an
integer overflow and privilege escalation.
All versions between 2.3.1 and 3.3 contain a bug in the
2002 Jul 01
0
Revised OpenSSH Security Advisory
This is the 4th revision of the Advisory.
This document can be found at: http://www.openssh.com/txt/preauth.adv
1. Versions affected:
Serveral versions of OpenSSH's sshd between 2.3.1 and 3.3
contain an input validation error that can result in an
integer overflow and privilege escalation.
All versions between 2.3.1 and 3.3 contain a bug in the
2003 Aug 25
2
[Bug 629] sshd_config & PAM backwards compatibility
http://bugzilla.mindrot.org/show_bug.cgi?id=629
Summary: sshd_config & PAM backwards compatibility
Product: Portable OpenSSH
Version: -current
Platform: All
OS/Version: All
Status: NEW
Severity: trivial
Priority: P5
Component: PAM support
AssignedTo: openssh-bugs at mindrot.org
2004 Sep 17
3
sftp-server debug output
Help! I am trying to get debug output working with sftp-server, and
can''t seem to find the appropriate information to get it working. Yes,
I have recompiled sftp-server to include defining DEBUG_SFTP_SERVER. I
found that myself in the code before finding it in several postings as
the common answer to others having this problem.
In addition, I have set up the sshd_config file
2002 Jun 26
2
OpenSSH Security Advisory (adv.iss)
1. Versions affected:
All versions of OpenSSH's sshd between 2.9.9 and 3.3
contain an input validation error that can result in
an integer overflow and privilege escalation.
OpenSSH 3.4 and later are not affected.
OpenSSH 3.2 and later prevent privilege escalation
if UsePrivilegeSeparation is enabled in sshd_config.
OpenSSH 3.3 enables
2001 Jun 26
1
OpenSSH 2.9p2 with PAMAuthenticationViaKbdInt
When using PAM to do password authenticaion the attempt/failure counter
appears to be getting confused. This is using a rh62 system with the
openssh-2.9p2-1 rpms...
On the client side...
[matthewm at toadhall (7) matthewm]$ grep Auth /etc/ssh/ssh_config
RhostsAuthentication no
RhostsRSAAuthentication no
HostbasedAuthentication no
RSAAuthentication no
PubkeyAuthentication yes
2020 Feb 16
6
MLIR for clang
Starting from May-June, we at "Compiler Tree" would start porting clang
compiler to use MLIR as middle end target. If someone has already started a
similar effort we would love to collaborate with them. If someone would
like to work with us, we are ready to form a group and collaborate. If
there are sharing opportunities from Fortran side, we would like to
consider the same.
We are
2020 Feb 16
2
MLIR for clang
Hi Prashanth,
On Sun, Feb 16, 2020 at 10:22 AM Prashanth N R via llvm-dev
<llvm-dev at lists.llvm.org> wrote:
>> Starting from May-June, we at "Compiler Tree" would start porting clang compiler to use MLIR as middle end target. If someone has already started a similar effort we would love to collaborate with them. If someone would like to work with us, we are ready to
2020 Jan 13
5
FC : A MLIR+LLVM based Fortran front end
Agreed! Is the code already available? What are your plans for it, and are you interested in collaboration with the rest of the LLVM community?
-Chris
> On Jan 11, 2020, at 11:58 AM, Finkel, Hal J. via llvm-dev <llvm-dev at lists.llvm.org> wrote:
>
> Hi, Prashanth,
>
> That's great news! It sounds like you've made a lot of progress, and I certainly hope that you
2020 Feb 17
2
FC : A MLIR+LLVM based Fortran front end
Hi Petr-
1. We compile SPEC benchmarks bwaves and xchange currently. We are close to
compiling fotonik at this point.
2. We released the source as experimental for the community to take a look.
Soon we will open source the entire history of development(we are working
on the script to upload the history).
thanks,
-Prashanth
On Mon, Feb 10, 2020 at 4:20 AM Petr Penzin via llvm-dev <
llvm-dev
2020 Jan 11
3
FC : A MLIR+LLVM based Fortran front end
Hi-
In August we made an announcement of "FC: A new fortran front end" [1].
At that time to get an end-to-end solution, we made FC to emit LLVM IR
directly. At present, we have upgraded FC to emit MLIR. Currently the
language supported is close to Fortran-95. Apart from 400+ unit test cases,
out framework passes two SPEC-2017 benchmarks successfully. Currently we
are cleaning up the
2002 Jan 07
3
keyboard-interactive
Is there a way for a PAM module to force a client (and the server) to
use kbd-interactive? As far as I can tell, when in the INITIAL_LOGIN
phase, all communication with the client returns a PAM_CONV_ERR. I am
trying to write a PAM module that will prompt a user for a second
username and a second password in order for the module to succeed so
that proper authentication relies on the ability
2003 Dec 16
11
[Bug 774] banner is displaying twice (/etc/issue)
http://bugzilla.mindrot.org/show_bug.cgi?id=774
Summary: banner is displaying twice (/etc/issue)
Product: Portable OpenSSH
Version: 3.7.1p1
Platform: All
OS/Version: Solaris
Status: NEW
Severity: security
Priority: P2
Component: sshd
AssignedTo: openssh-bugs at mindrot.org
ReportedBy:
2003 Dec 02
1
Sun Kerberos Password Expiration Problems with OpenSSH 3.7.1p2
I am running Solaris 8 with the Basic Security Module (BSM) loaded and
Sun's Enterprise Authentication Mechanism (SEAM) installed. Our servers
are using Sun One Directory Services (LDAP) for authorization and Sun's
Kerberos 5 implementation for authentication. We have been using OpenSSH
3.4p1 with OpenSSL 0.9.6f and everything has been working fine.
We are updating our OpenSSH and OpenSSL
2020 Jan 13
4
FC : A MLIR+LLVM based Fortran front end
Neat, another fortran compiler option.
Does anyone have a list/comparison of all the LLVM fortran compilers? I'm
not really tracking this, since Fortran isn't really my area of expertise,
but I've seen the following. Perhaps there are even more?
"Flang". The original of the name, I think? Abandoned.
https://github.com/llvm-flang/flang
"Fort" -- fork of the above
2020 Feb 17
3
[flang-dev] MLIR for clang
Hi Michael-
1. We intent to fork clang for MLIR at a particular release and develop. We
will mostly merge with the master as soon as we reach a good milestones.
Most of the development is expected to happen in github or some such
version control system.
2. MLIR is extensible and we are hoping that constructs like exceptions can
be represented in MLIR. As we dive deep into design we might be able