similar to: multiuser sshd as non-root

Reindl on the compiled version the samba binary file is not in /usr/sbin/smbd and i think start whith samba file not with smbd El lun., 21 sept. 2020 10:41, Reindl Harald <h.reindl at thelounge.net> escribi?: > > > Am 21.09.20 um 14:47 schrieb jmpatagonia via samba: > > Hello I am using samba Version 4.11.2 compiled. > > > > To start the daemon I using > >

On 2018-04-04 23:10, Kevin Cummings wrote: > PAM audit_log_acct_message() failed: Operation not permitted > imap-login: Disconnected (AUTH failed, 2 attempts in 10 secs): > user=<username>, method=PLAIN, rip=192.168.1.94 lip=192.168.1.94, TLS, > session=<sessionid> Please look at my pull request at: https://github.com/dovecot/core/pull/71 Or, if it's any easier: 1)

Am 23.02.2016 um 01:30 schrieb Paul D. DeRocco: >> From: Reindl Harald >> >> besides that you did not provide the info "embedded system" - >> when you >> have systemd you also have "systemctl restart >> whatever.service" and in >> PHP it would be passthru('command') >> >> you don't know how you restart a service

Am 21.09.20 um 14:47 schrieb jmpatagonia via samba: > Hello I am using samba Version 4.11.2 compiled. > > To start the daemon I using > > /samba10/samba-4.11.2/bin/samba -s /etc/samba/smb.conf > > To stop correctly, what is recommended ? > > Actually I using kill -9 ... SIGTERM or use a OS which a proper service manager like systemd which sends SGTERM to any process

Hello, What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. What are some policies/techniques that have worked for this list with minimal hassle? Thanks! -Eugene

Hi. I was wondering if it is possible to do a Wine installation and installation of Windows applications where the applications are accessible to all users (or better yet, users in a certain group like "win32" or "wine")? I read in the most recent edition (March 18, 2005) of the Wine Weekly News that the global registry functionality had been removed. Is this necessary to have

Hi samba --version Version 4.0.6-GIT-4bebda4 smb.conf: [users] path = /home/users read only = No Working on the DC which is also the fileserver user steve2 can write to his folder at /home/users/steve2 But if we now mount the share: sudo mount -t cifs //doloresdc/users /mnt -osec=krb5,multiuser he can't write to the mounted share at /mnt/users/steve2 He gets 'Permission denied'.

Hi, I'm terribly sorry that I missed this before 3.7p1 was out. The permanently_set_uid() function fails on Cygwin since the test to revert to the saved uid unfortunately works on Cygwin though it shouldn't. The reason is that a Windows NT process always can revert to its previous privileges. There's no such concept of giving up rights in a process permanently. This is only

I have a file server running with Samba over Debian Sarge 3.1 R1. This File server store MDB and XLS files. Could anybody give me an optimal setup for my samba server (smb.conf). Actually, the performance is very poor. [global] workgroup = REVLON netbios name = FILE_SRV security = user encrypt passwords = yes passwd program = /usr/bin/passwd %u unix password sync = yes socket options =

Am 09.07.2016 um 17:19 schrieb Rowland penny: > On 09/07/16 10:27, Marc Muehlfeld wrote: >> What is different afterwards when using with/without? Does it create a >> systemd service file? >> > Do not know about '--with-systemd', but there are no (horrible) systemd > components if you use '--without-systemd' there is nothing horrible in a systemd

This patch adds the ability to kinit to allow the dropping of POSIX capabilities. kinit is modified by this change, such that it understands the new kernel command line "drop_capabilities=" that specifies a comma separated list of capability names that should be dropped before switching over to the next init in the boot strap (typically on the root disk). When processing capabilities

Hello Porters, I am attempting to compile OpenSSH 2.9.9p2 on a Dynix V4.4.4 host. I have set USE_PIPES and BROKEN_SAVED_UIDS (the latter because there are no functions for set{eu,eg}id() that I can find). I configured with "./configure '--with-libs=-lnsl -lsec'". Each time I attempt to login, I get this error: No utmp entry. You must exec "login" from

Hi, I'm in the position of having to support a fix for a bad interaction between sshd and winbind/Active Directory. It's solved by a small patch against openssh, but it would be nice to have the solution generally available. The problem has previously been described on this list by Andreas Schneider, see: https://lists.mindrot.org/pipermail/openssh-unix-dev/2019-February/037556.html

I am trying to compile sshd 3.8p1 on Tru64 UNIX V4.0F Patch Level 7. Previously I've compiled the entire 3.6.1p2 distribution with no problems. The problem seems to occur when linking sshd. The linker is unable to find xcrypt and shadow_pw functions (openbsd-compat/*.c). The libopenbsd-compat seems to have built without errors. I configure as follows: CC=cc CFLAGS=-O LDFLAGS=-non_shared

Fixes a potential (but probably rather unlikely) use after free bug in function temporarily_use_uid(), file uidswap.c. --- a/uidswap.c +++ b/uidswap.c @@ -113,8 +113,9 @@ temporarily_use_uid(struct passwd *pw) } } /* Set the effective uid to the given (unprivileged) uid. */ - if (setgroups(user_groupslen, user_groups) < 0) -

Hi, Overview: Running redhat 6.3 kernel 2.6.32-279. cifs-utils : 4.8.1-10 server is connected to Active Directory and working fine. Users from AD can log in the server and have their /home created if it is the first time. and then when I do a Klist i have a ticket. Default principal: test at TMRIUSA.COM Valid starting Expires Service principal

http://bugzilla.mindrot.org/show_bug.cgi?id=787 ------- Additional Comments From openssh_bugzilla at hockin.org 2004-02-20 13:01 ------- Created an attachment (id=548) --> (http://bugzilla.mindrot.org/attachment.cgi?id=548&action=view) NGROUPS patch ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

All, Could someone explain the purpose of the uidswap functions with respect to ssh ( the client ). From what I gathered , ssh installs as setuid root and swaps ids when reading potential key files that may be read only by root. Also , I think when binding to a privileged port ssh swaps id. Is that so? What are the consequnences if you do not install ssh setuid root? ( As far I as know no uid

Hi, the below patch solves the same problem for gids as has already been solved for uids. Windows has no concept of permanently changing the identity. It's always possible to revert to the original identity. Thanks, Corinna Index: uidswap.c =================================================================== RCS file: /cvs/openssh_cvs/uidswap.c,v retrieving revision 1.44 diff -p -u -r1.44

What is the proper way to install/configure R-2.6.2 for M$-Windows XPSP2 for multiple users when the other users don't have administrative rights. I don't remember this was a problem with previous versions of R. I installed R-2.6.2 as administrator on the computer. It installs, runs, and can manually update fine. The main user of this computer does not have administrator rights. Now,