similar to: What does the socks function of openssh hide?

I have a slightly complicated question. I am using an mpi application (Intel impi) which uses ssh to launch applications. For about 0.1-0.2% of the ssh connections I end up with a zombie, i.e. ps will show [ssh] <defunct>. Something is going wrong with the ssh when it starts, perhaps a race condition, it is not disconnecting after some time, that I have been able to verify. The most obvious

Would it be possible to add a debug option that displays each host name as it connects to them? I create tunnels that sometimes uses 3 intermediate machines before getting to the final destinations (I'm sure others create tunnels that are much deeper). To debug a problem, it would be helpful to see each connection being made. ssh -v[v[v]] doesn't display the hostnames (or

Hi all openssh devs out there. I have quite a few Host-stanzas in my .ssh/config to keep track of all the different settings and credentials needed to access all different hosts I connect to. Now I have ran in to a problem where I need to switch settings based on what user I'm trying to login to a host as. A simple case is: ssh -i rootkey root at host123 vs. ssh -i userkey username at

Dear ssh gurus, Here's the version I'm testing on : flavien :/$ ssh -V OpenSSH_5.3p1 Debian-3ubuntu4, OpenSSL 0.9.8k 25 Mar 2009 I launch a remote command : flavien$ ssh -o ControlMaster=yes -o ControlPath=/tmp/ssh-control localhost 'echo pid:$$ ...sleeping...; sleep 2803' flavien at localhost's password: pid:11565 ...sleeping... On another shell, I

Hi, I'm using samba 3.0.22 on a Linux/Debian machine. I'm trying to get printer drivers on the server automatically picked by the XP clients on the server. $ rpcclient localhost -U flavien -c 'enumdrivers' Password: [Windows NT x86] Printer Driver Info 1: Driver Name: [hp1] The user "flavien" has PrintOperator privileges : $ net rpc

Currently, LogLevel must be set to VERBOSE to see the fingerprint of an accepted key, and the default LogLevel is INFO. Since this is useful security information, I would like to propose that the 'Accepted publickey' message be modified to include the fingerprint of the accepted key. Is this a reasonable solution? Here is an example log snippet with LogLevel VERBOSE: Oct 1 15:23:24

Hello, An AIX machine runs a program that forks ssh client in order to launch commands on a remote. I'm first seting up a Master connection with a ControlPath, then using that connection to launch various commands on the remote, and killing the master by issuing a "-O exit" command. SSH client version on that machine is : # ssh -V OpenSSH_5.8p1, OpenSSL 0.9.8r 8 Feb 2011 #

is openssh going to ever contain socks4/5 proxy support (http://www.socks.nec.com/) the same way ssh (nonfree version) does? Without this support, openssh is completely unusable behind a firewall. Hayden A. James

Hi, i added a native (client) Socks V4/V5 support inside FreeBSD libc library. The work is based of my project (see http://csocks.altervista.org) CSOCKS. You can get it here: http://csocks.altervista.org/download/FreeBSD_libc.tar.gz CHANGES: I changed the file: /usr/src/lib/libc/Makefile I added the Directory: /usr/src/lib/libc/socks They contains the files:

Is there any plan to add socks 4 or socks 5 support to openssh like the original ssh developed in finland?? Michael Michael at bizsystems.com

Just a warning and a call to action: Theo de Raadt has convinced me to remove SOCKS support from our port of OpenSSH. His argument is that it can be easily and generically implemented as a ProxyCommand. This fits with my desire to keep our divergences from the OpenBSD codebase to a minimum. This looks like a few hours work (for someone more familiar the SOCKS API that I). It is basically a

Hi, I am running centos server 4.2 and I have installed dante-server socks proxy I yumed it off a dag repo. The problem I am having is configuring it. I have edited the sockd.conf file but it still tells me that I don''t have an internal address setup. Does anyone have any suggestions. am I editing the wrong config file. if I do a locate sock*.conf I get the following list

Is there anything special in the way of configuration that is required to enable a CentOS box to act as the point of origin for an http request routed to it via a SOCKS ssh link? I have researched this matter and the recommended procedure is to open an SSH connection to the desired host passing the requisite switches so: ssh -f -n -D <port> user at host.domain.tld And then reconfigure

Anyone here using a SOCKS server? I'm using ss5 but there seems to be a strange disconnect issue with it and openvpn. While I'm trying to figure out whether ss5 is at fault, or openvpn, I'd like to try a different SOCKS server. Could you recommend one that works well on CentOS? Thanks. -- Florin Andrei http://florin.myip.org/

Hi, The attached patch extends the mux listener to accept SOCKS requests in addition to the native mux commands. The rationale behind is that creating tunnels attached to TCP ports is a security hazard in multi-user machines where there is no way to control who connects through the tunnels. On the other hand, The mux UNIX domain socket binds to the file system and regular permissions can be

Hi As this '-R' command initially works fine I guess it must be a bug. I have to login at a computer which is hidden behind NAT. The user (joe) at the computer then connect to my server with the command: ssh -R 1234:localhost:22 test.com Then I login to test.com and connect back to joes computer: ssh -p 1234 localhost I get successfull connection every time but after a few

https://bugzilla.mindrot.org/show_bug.cgi?id=3700 Bug ID: 3700 Summary: Unresponsive domain names freeze SSH connection when using SOCKS proxy Product: Portable OpenSSH Version: 9.1p1 Hardware: amd64 OS: Linux Status: NEW Severity: critical Priority: P5 Component:

Hi all, I've noticed that OpenSSH 7.7 adds stricter validation of user environment strings from authorized_keys files. While strict validation is a good thing from a security perspective, this new change specifically blocks underscores which are common to include in a user environment string. This results in the key being rejected outright. Including underscores in a user environment is a

Hello, I got a dovecot server running on a Debian Linux machine. I'd like to run another instance of it. I start it with another config file with debug output on stderr. The auth parameters are different : dovecot1: Imapd only, listens on 143, auth=/etc/passwd dovecot2: Imapd only, listens on 144, auth=mysql It kinda works... But... How does one instance of it recognizes the

We have 2 T1's coming from our phone switch to a digium TE220B. We have managed to get CPN and the extension outpulsed from the switch, but call setups are really slow. Our T1's are set up as E&M Wink, and they send us the last 5 digits dialed followed by the 10 digit calling party number (we couldn't get the switch to be happy with *CPN*+5* to use featd). We are using asterisk