similar to: SFTP chroot: Writable root

Displaying 20 results from an estimated 1100 matches similar to: "SFTP chroot: Writable root"

2018 Jan 08
2
naive sftp user point of view was: SFTP chroot: Writable root
Am 07.01.2018 um 19:41 schrieb halfdog: > Hello list, > > I created a page to demonstrate, what would happen when chroot > root directory is writeable. In fact, code execution is possible > already, when only /etc and /bin are writable. I also tried to > escape the chroot jail, but that did not work for non-root users. > > As the 2009 CVE activities mention, that creating
2019 Nov 18
2
Perl was: JMAP: Re: http API for IMAP
Am 16.11.19 um 08:15 schrieb Bron Gondwana via dovecot: > proxy.jmap.io is very stale code at the moment.? I'm hoping to have enough time to hack on it at the IETF hackathon this > weekend :) I am a big biased. AFAIK it is written in Perl. I am very happy that I did not need to use Perl since 18 years now. The regex where great. But time has changed. Everytime you use regex today, I
2019 Nov 13
5
http API for IMAP
2019 Nov 14
4
JMAP: Re: http API for IMAP
Am 14.11.19 um 14:03 schrieb Benny Pedersen via dovecot: > Thomas G?ttler via dovecot skrev den 2019-11-14 08:55: > >> Is there already an open source imap2jmap server? > > why do you say imap here ? > > https://www.cyrusimap.org/imap/developer/jmap.html > > cyrus already have it, we just wait for dovecot :) I used my favorite search engine (ecosia) and found
2019 Nov 19
1
Perl was: JMAP: Re: http API for IMAP
Am 18.11.19 um 16:18 schrieb Ralph Seichter via dovecot: > * Thomas G?ttler via dovecot: > >> https://github.com/guettli/programming-guidelines#regex-are-great---but-its-like-eating-rubbish > > Thanks for including the disclaimer "It's my personal opinion and > feeling. No facts, no single truth." in your 'guidelines' (many of which > I disagree
2019 Nov 14
6
http API for IMAP
Am 13.11.19 um 17:21 schrieb Ralph Seichter via dovecot: > * Thomas G?ttler via dovecot: > >> Is there a way to access mails in dovecot via https? > > Why on earth would that be beneficial? > > "The Internet Message Access Protocol, Version 4rev1 (IMAP4rev1) > allows a client to access and manipulate electronic mail messages > on a server."
2019 Nov 14
2
JMAP: Re: http API for IMAP
Am 13.11.19 um 15:07 schrieb Benny Pedersen via dovecot: > Thomas G?ttler via dovecot skrev den 2019-11-13 14:40: >> I would love to write a progressive web app for accessing dovecot (via >> IMAP) > > like all other webmail is using imap > >> But JavaScript in the browser can only use http/https. > > so what ? :=) > > hopefully you wont run webmail
2018 Jan 23
8
Sending Signal to remote process
I want ssh to forward the SIGTERM signal to the remote command. Example: ssh root at localhost /root/print-signal.py Get PID of ssh: ps aux| grep print-signal Kill the matching ssh process: kill pid-of-ssh Unfortunately only the ssh process itself gets the signal, not the remote command (print-signal.py). The remote command does not terminate :-( How can I make ssh
2019 Jan 04
3
[SUSPECTED SPAM] VPN over SSH: State of the art?
I know that this has been discussed before and I know that you should avoid it, and use a real VPN solution. I would like to move from port-forwarding via ssh to VPN and I have only the ssh port open. What is the current state of the art if you want to create VPN over ssh? Regards, Thomas -- Thomas Guettler http://www.thomas-guettler.de/ I am looking for feedback:
2019 Nov 15
2
http API for IMAP
Am 14.11.19 um 19:18 schrieb Ralph Seichter via dovecot: > * Thomas G?ttler via dovecot: > >> Stateless, http and URLs are the future. > > A bold claim, and not worth anything without proof, which is impossible > to provide because you cannot predict the future. Yes, you are right. I can't predict the future. But I can look at the current state of the art. AFAIK nobody
2018 Jan 05
3
SFTP chroot: Writable root
On Fri, Jan 05, 2018 at 09:42:18PM +1030, David Newall wrote: > On 05/01/18 20:06, Jakub Jelen wrote: > > if the confined user has write access to the chroot directory, > > there are ways how to get out, gain privileges and or do other > > nasty things. > > I'm not inexperienced with UNIX and unix-like operating systems (30+ years), > and I can't think what
2019 Nov 14
0
http API for IMAP
A HTTP API for IMAP and for that matter, POP3 and SMTP is exactly what we built where I work. For anyone wonder why build such a thing? A simplified interface is an exceptionally powerful tool. Many of our clients have encountered issues constructing multipart http requests so if that?s an issue, good luck getting IMAP to work. Since multipart turns out to be such an issue we?ve turned out
2019 Nov 16
0
JMAP: Re: http API for IMAP
proxy.jmap.io is very stale code at the moment. I'm hoping to have enough time to hack on it at the IETF hackathon this weekend :) Cheers, Bron. On Fri, Nov 15, 2019, at 00:44, Thomas G?ttler via dovecot wrote: > Am 14.11.19 um 14:03 schrieb Benny Pedersen via dovecot: > > Thomas G?ttler via dovecot skrev den 2019-11-14 08:55: > > > >> Is there already an open
2017 Feb 24
2
[SUSPECTED SPAM] Canonical Link to Reference of "ServerAliveInterval"
What is the canonical link to Reference of "ServerAliveInterval"? Background: I want to write an answer at serverfault (Q-A Site). I want to avoid copy+pasting. I would like to lead the new comer to the canonical reference. Regards, Thomas G?ttler -- Thomas Guettler http://www.thomas-guettler.de/
2017 Sep 01
3
sftp/scp only without real users
Hi, my goal: sftp/scp only access, without the need for linux users. I want to provide 10 sftp/scp directories to 10 people. Let's call this "virtual account" I don't want to create linux users for each of them. I would like to create one linux user (backup_user). In his home-directory will be 10 directories. For each "virtual account" one directory. Every
2017 Mar 15
2
Relaiable ssh tunnel via systemd
Am 14.03.2017 um 21:43 schrieb Nico Kadel-Garcia: > On Tue, Mar 14, 2017 at 4:20 PM, Thomas G?ttler > <guettliml at thomas-guettler.de> wrote: >> >> >> >> Am 14.03.2017 um 15:10 schrieb Nico Kadel-Garcia: >>> Look into the "autossh" program, which is very good to manage and >>> maintain such tunnels. >>> >> >> Hi
2017 Mar 14
4
Relaiable ssh tunnel via systemd
Am 14.03.2017 um 15:10 schrieb Nico Kadel-Garcia: > Look into the "autossh" program, which is very good to manage and > maintain such tunnels. > Hi Nico and other ssh users, Systemd restarts the ssh if it terminates. AFAIK this is all that is needed. But maybe I am missing something. Is there a feature of autossh that I don't get with systemd? --
2017 Mar 14
3
Relaiable ssh tunnel via systemd
We try to run a reliable ssh tunnel vis systemd. This is the unit configuration file: {{{ [Unit] Description=Tunnel For %i After=network.target [Service] User=autossh ExecStart=/usr/bin/ssh -o "ExitOnForwardFailure yes" -o "ServerAliveInterval 60" -N -R 40443:installserver:40443 -R 8080:installserver:8080 ExecStartPre=-/usr/bin/ssh tunnel@%i "for pid in $$(ps -u
2006 Jan 10
0
Remove trailing whitespace (Patch)
Hi, I wasted some time because there was a space character at the end of an ignore line. I wrote a small patch which removes all whitespace at the end of all ignore lines. Patch is attached. Thomas -- Thomas Guettler, http://www.thomas-guettler.de/ E-Mail: guettli (*) thomas-guettler + de Spam Catcher: niemand.leermann at thomas-guettler.de -------------- next part -------------- ---
2015 Feb 04
8
Resubmission after N days
Hi, I would like to implement a 43Folder system[1] with dovecot and a mail user agent. Use case: - I have a new mail in my inbox. I read it and see that I can't handle it now. I want to handle this mail in 5 days. - Now I want to have some sort of resubmission: the mail should be moved to a different location for these 5 days. - After 5 days the mail should be moved to my inbox again. How