similar to: Attempts to connect to Axway SFTP server result in publickey auth loopin

On Fri, Feb 23, 2018 at 05:01:00PM +1100, Darren Tucker wrote: > You could try this patch which defers resetting the "tried" flag on the > pubkeys until the list of authentication methods changes. I don't have > a server with this behaviour so I'm not sure if it helps (and I'm not > sure it's the right thing to do anyway). I think this is a better way to

https://bugzilla.mindrot.org/show_bug.cgi?id=2642 Bug ID: 2642 Summary: [sshconnect2] publickey authentication only properly works if used first: pubkey_prepare doesn't work after pubkey_cleanup Product: Portable OpenSSH Version: 7.3p1 Hardware: amd64 OS: Linux Status:

I have been looking into this over the weekend, and what I have found might be of interest to OpenSSH developers. First, the bug that triggers the problem is in the embedded system. Second, such as things were changed in 6.4p1, the OpenSSH client seems to be open to a potential DoS attack. The infinite loop described in my previous post is embodied in the last four messages of the 6.4p1 traces.

Hello all, First of all, thank you for such great software. I have a bug (and a fix) to report for 5.1p: The "Axway XFB.Gateway" SFTP server will drop sftp sessions initiated from the OpenSSH 5.1p (HP-UX) sftp if it receives the "no-more-sessions at openssh.com" flag. It can be reproduced also with the sftp sessions initiated from a OpenSSH 5.1p sftp on a Linux machine. As

https://bugzilla.mindrot.org/show_bug.cgi?id=2599 Bug ID: 2599 Summary: Overly verbose partial authentication Product: Portable OpenSSH Version: 7.2p1 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: ssh Assignee: unassigned-bugs at

My keys are secured with a passphrase. That's good for security, but having to type the passphrase either at every login or at every invocation of ssh(1) is annoying. I know I could invoke ssh-add(1) just before invoking ssh(1), if I keep track of whether I invoked it already, or write some hacky scripts; but the rest of OpenSSH is wonderfully usable without any hacks. Hence, this patch.

this is the proposed gssapi diff against OpenSSH-current (non-portable). note: if this goes in, the old krb5 auth (ssh.com compatible) will be removed. please comment. jakob Index: auth.h =================================================================== RCS file: /home/hack/jakob/mycvs/sshgss/auth.h,v retrieving revision 1.1.1.2 retrieving revision 1.3 diff -u -r1.1.1.2 -r1.3 --- auth.h

Hello, I have recently downloaded and compiled openssh-3.7.1p2 on both HP-UX 10.20 and HP-UX 11.00. The compile went fine. Logging in on the system used for the build works fine. However, logging in on a different system (where the newly compiled openssh is installed) results in the following error: Permission denied (publickey,password,keyboard-interactive). I have tried several things I

Good day All, I have experienced the following ... I have a rhel 6.1 server running qemu-kvm. I have setup my desktop for a publickey login (root user) to said server so that I may manage the server (qemu-kvm) via the desktop with virt-manager. However, I connect just fine, but cannot create vm's. I get : "No hypervisor options where found for this connection" My laptop does run

http://bugzilla.mindrot.org/show_bug.cgi?id=300 Summary: publickey authentication logged as hotsbased authentication Product: Portable OpenSSH Version: -current Platform: ix86 OS/Version: OpenBSD Status: NEW Severity: minor Priority: P4 Component: sshd AssignedTo:

http://bugzilla.mindrot.org/show_bug.cgi?id=300 djm at mindrot.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |DUPLICATE ------- Additional Comments From djm at mindrot.org 2002-06-27 01:15

http://bugzilla.mindrot.org/show_bug.cgi?id=29 mouring at eviladmin.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |DUPLICATE ------- Additional Comments From mouring at eviladmin.org

Hello, I have the following problem: I want to use publickey authentication by using the publickey of a x509 certificate stored on a java card. I can already extract the publickey of the certificate and write it into a file. The problem i have is that i don't know how to convert the certificate's publickey into an rsa publickey format that openssh will accept. Does anybody have a

Hello All, I'm using OpenSSH 4.2p1 and I have a question regarding the usage of host keys in OpenSSH. The host keys (both private and public) are stored in etc directory. But when sshd loads the key, it reads only private key and generates the public key from it. Is there any reason for having the public host key along with the private key in the etc directory? -- M.P

Hello list, I'd like to monitor failed publickey authentication attempts to my OpenSSH server and noticed that they're not logged (even in VERBOSE logging mode). Doing some digging, I found this 8 year old bug: https://bugzilla.mindrot.org/show_bug.cgi?id=974 Apparently, that issue was already known eight years ago and a patch is even attached -- but it never made it into mainline?

https://bugzilla.mindrot.org/show_bug.cgi?id=2720 Bug ID: 2720 Summary: Include username in "Permission denied (publickey)." message Product: Portable OpenSSH Version: 7.2p2 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component:

Hi, I have hard figuring out what I did wrong ... On HPUX 11 I have compiled OpenSSH 2.9.2p2 with gcc 2.9 (taken from hp opensource server) and zlib also downloaded from hp. As long as I do passwd authentication everything work fine (I have used --with-pam), but if I tried publickey either in sshv1 or sshv2 authentication fails. I have tried a bunch of things but none worked so all

Hi, I found an answer : Use virConnectOpenAuth() instead of virConnectOpenReadOnly(). As my piece of code is running silently (without user connected) , by using virConnectOpenAuth() , is it possible to avoid to prompt user to get user /password ? Thx. J.P. -----Message d'origine----- De : libvirt-users-bounces@redhat.com [mailto:libvirt-users-bounces@redhat.com] De la part de

Hi, 1) is it enough to add a hook.py in /usr/libexec/vdsm/hooks/before_vm_start directory , and then shut down and reboot a guest to see this hook.py invoked ? 2) when running manually my hook.py, I got following error : ImportError: No module named hooking Do I have to install anything to solve this issue ? Thanks for help. Regards, J.P. Ribeauville P:

Hi, I'm trying to find out what is the minimum release I need to use to have this field 'state' available ? <channel type='unix'> <source mode='bind' path='//var/lib/libvirt/qemu/dummy_agent'/> <target type='virtio' name=dummy' state='connected'/> <alias name='channel0'/> <address