Displaying 20 results from an estimated 1000 matches similar to: "[Bug 2530] New: Client does not differentiate between more keys on Smart card, signs always with first one"
2014 Jan 28
1
safenet eToken 5100 pkcs11 bug(?)
Guys, I am not able to get it run. I can not say where is the problem but it seams that the openssh client is not able to get list of rsa key from token. See two logs from pkcs11-spy. one is for "ssh -I" the second is for "pkcs11-tool -O"
In the second log there is private_key visible or offered in the first one is not.
I use openssh 6.4 version on Linux or Mac.
Log from
2018 Jan 05
11
[Bug 2817] New: Add support for PKCS#11 URIs (RFC 7512)
https://bugzilla.mindrot.org/show_bug.cgi?id=2817
Bug ID: 2817
Summary: Add support for PKCS#11 URIs (RFC 7512)
Product: Portable OpenSSH
Version: 7.6p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: Smartcard
Assignee: unassigned-bugs at
2015 Jul 15
3
[Bug 2429] New: ssh-keygen ignores keys that have CKA_ID == 0
https://bugzilla.mindrot.org/show_bug.cgi?id=2429
Bug ID: 2429
Summary: ssh-keygen ignores keys that have CKA_ID == 0
Product: Portable OpenSSH
Version: 6.9p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: Smartcard
Assignee:
2015 Sep 23
0
[Bug 1773] PKCS#11 authentication fails with "xmalloc: zero size" for some certificates.
https://bugzilla.mindrot.org/show_bug.cgi?id=1773
Jakub Jelen <jjelen at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |jjelen at redhat.com
--- Comment #5 from Jakub Jelen <jjelen at redhat.com> ---
This is related to the bug
2006 Oct 31
0
PSARC 2005/572 PKCS#11 v2.20
Author: izick
Repository: /hg/zfs-crypto/gate
Revision: f7c96af91f148327ba792c8fbcb9e49897664f9c
Log message:
PSARC 2005/572 PKCS#11 v2.20
4920408 PKCS#11 v2.20 support for the Crypto Framework
6287425 residual bzero''s in hmac part of sha2
6287428 add sha2 to the i.kcfconfbase upgrade script
Files:
create: usr/src/common/crypto/blowfish/blowfish_cbc_crypt.c
create:
2016 Apr 01
0
Libreswan PEM format
IPSec is very complex with certificates. try first with PSK authentication
and then with certificates
--
Eero
2016-04-01 20:21 GMT+03:00 Glenn Pierce <glennpierce at gmail.com>:
> I generated according to the docs . Which produced
> my server.secrets as below
>
> used the command
>
> ipsec newhostkey --configdir /etc/ipsec.d --output
>
2015 Aug 11
0
Announce: OpenSSH 7.0 released
OpenSSH 7.0 has just been released. It will be available from the
mirrors listed at http://www.openssh.com/ shortly.
OpenSSH is a 100% complete SSH protocol 2.0 implementation and
includes sftp client and server support. OpenSSH also includes
transitional support for the legacy SSH 1.3 and 1.5 protocols
that may be enabled at compile-time.
Once again, we would like to thank the OpenSSH community
2016 Apr 01
2
Libreswan PEM format
I generated according to the docs . Which produced
my server.secrets as below
used the command
ipsec newhostkey --configdir /etc/ipsec.d --output
/etc/ipsec.d/www.example.com.secrets
: RSA {
# RSA 3328 bits ***.**.net Fri Apr 1 15:39:32 2016
# for signatures only, UNSAFE FOR ENCRYPTION
2015 Aug 11
2
Announce: OpenSSH 7.0 released
OpenSSH 7.0 has just been released. It will be available from the
mirrors listed at http://www.openssh.com/ shortly.
OpenSSH is a 100% complete SSH protocol 2.0 implementation and
includes sftp client and server support. OpenSSH also includes
transitional support for the legacy SSH 1.3 and 1.5 protocols
that may be enabled at compile-time.
Once again, we would like to thank the OpenSSH community
2018 Jul 31
11
[Bug 2890] New: ssh-agent should not fail after removing and inserting smart card
https://bugzilla.mindrot.org/show_bug.cgi?id=2890
Bug ID: 2890
Summary: ssh-agent should not fail after removing and inserting
smart card
Product: Portable OpenSSH
Version: 7.7p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component:
2020 Jun 11
0
CESA-2020:2530 Important CentOS 7 tomcat Security Update
CentOS Errata and Security Advisory 2020:2530 Important
Upstream details at : https://access.redhat.com/errata/RHSA-2020:2530
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
x86_64:
1a682ecdfdca8179b910e4ad1364c7ea7af6484572fa4c0bf786d78a32b2352f tomcat-7.0.76-12.el7_8.noarch.rpm
2015 Jul 16
13
[Bug 2430] New: ssh-keygen should allow to login before reading public key from smart card
https://bugzilla.mindrot.org/show_bug.cgi?id=2430
Bug ID: 2430
Summary: ssh-keygen should allow to login before reading public
key from smart card
Product: Portable OpenSSH
Version: 6.9p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
2015 Jul 14
2
[Bug 2427] New: ssh keygen is trying to read uninitialized slots on smart card (and is failing)
https://bugzilla.mindrot.org/show_bug.cgi?id=2427
Bug ID: 2427
Summary: ssh keygen is trying to read uninitialized slots on
smart card (and is failing)
Product: Portable OpenSSH
Version: 6.9p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
2013 Jan 10
1
how to generate a matrix by an my data.frame
Dear All
It is a little hard to give a good small example of my question,so I
will show the full data on the bottom and the attachment.Maybe some
one could tell me an appropriate way
to show it.I'm sorry for the inconvenience.
Q:How to generate a 53*53 diagonal matrix by my data
Some problems confused me are that:
1.Since it is a diagonal matrix,I have tried to transform col1 and
col2 to
2003 Feb 04
1
Bug in configure script for Solaris v9 arch with libsunperf (PR#2530)
System details:
--------------
Sun Blade 1000, Solaris 8, Sun ONE Compiler Suite (rebranded Forte 7), R
versions 1.6.0 and 1.6.2 - suspect others are affected, too
Problem description:
-------------------
Using the recommended env var setting from p.15 of the Admin Guide, the
configure script fails the sgemm sunperf test, even though the sunperf
libraries are available
Not linking with
2008 Feb 01
2
Un/Expected ZFS performance?
I''m running Postgresql (v8.1.10) on Solaris 10 (Sparc) from within a non-global zone. I originally had the database "storage" in the non-global zone (e.g. /var/local/pgsql/data on a UFS filesystem) and was getting performance of "X" (e.g. from a TPC-like application: http://www.tpc.org). I then wanted to try relocating the database storage from the zone (UFS
2006 Oct 30
0
Is there a way to differentiate PV-on-HVM devices from qemu-dm devices?
Hi folk,
I''m recently doing some work on VNIF driver, however, when I enabled
both qemu-dm devices and pv devices, the pv driver complains. It seems
two kinds of devices have very similar entries in xenstore, which misled
the driver.
I remembered in the past, there is a `type:ioemu'' entry in xenstore to
represent dm devices, but it was removed. There used to be a
2009 Sep 06
0
[LLVMdev] How to differentiate between external and internal calls in llc?
I have a MachineFunctionPass plugged into llc during
LLVMTargetMachine::addPreRegAlloc. In this Pass I need to extend calls (i.
e. CALL32m, CALL32r) iff they call function within the program.
CALL32m has, I think, ten different possibilities for the four operands
giving the target address. At the moment I have excluded calls that give the
displacement as GlobalAddress or JumpTableIndex
2004 Jan 27
0
differentiate incoming calls on SIP clients
Hello all,
I would like to set-up some direct lines so that when a user of mine
answers the phone he/she knows to say the correct intro message, so that
we can introduce ourselves as different companies.
I have played around with caller ID and can modify that - using caller
ID Name doesn't seem to work unless it is numeric? Do you have any
imaginative solutions for this?
Thanks
1999 Sep 29
1
getenv() can't differentiate "defined but empty" and "undefined"
getenv(<varname>) currently returns ""
if the <varname> is undefined.
However, if <varname> is defined but empty,
getenv(<varname>) still only returns "".
I think this is quite unfortunate
but consistent with the prototype.
---
I'd propose to change the current behavior.
Something which should be pretty back compatible would
for the first