Secure Shell Mode:
(Page 4 of 223)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Re: Multiple forced commands being executed 2011-01-22
Dominik George (dev naturalnik de)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Oliver,

this is essentially the point of the forced commands. SSH will execute
them, no matter what the client actually provides as a command.

If you instead want to jsut verify if the command is allowed, you will
need a wrapper script as forced c

[ more ]  [ reply ]
Re: Multiple forced commands being executed 2011-01-22
Dominik George (dev naturalnik de)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Oliver,

oh, sure, I didn't exactly get that. I wil ltry to reproduce that ...

- -nik

Am 22.01.2011 11:27, schrieb Oliver Beattie:
> Hi Dominik,
>
> Thanks for your reply, but I'm not sure I've properly explained
> what I mean. In essence, from wh

[ more ]  [ reply ]
Multiple forced commands being executed 2011-01-20
Oliver Beattie (oliver obeattie com)
Hi there,

I am having a very strange problem with SSH. Essentially, I'm using
forced commands to restrict access based on public key (there are
around 2000 public keys). It appears to work okay, but when I look at
the ssh -v output I see that the client/server is actually executing
all the forced c

[ more ]  [ reply ]
Re: Exact "Accepted password for" log message meaning 2011-01-20
Christophe Brocas (forum) (christophe brocas cnamts fr) (1 replies)
Le 19/01/2011 23:39, Gustavo Saito a écrit :
> The user and password exist, but aren't allowed to remote log in
>
Right Gustavo :)

After more configuration check, it is exactly that case :
- user/password are correct
- but rlogin=false parameter is set in the /etc/security/user (we are under AIX).

[ more ]  [ reply ]
Re: Exact "Accepted password for" log message meaning 2011-01-21
Raymond A. Meijer (rameijer gmail com)
Exact "Accepted password for" log message meaning 2011-01-19
Christophe Brocas (forum) (christophe brocas cnamts fr) (1 replies)
Hello,

Disclamer : I apologize by advance to ask for a newbie question :/

I do some analyzing tasks on openssh generated log messages.

Until then, I have always considered that message like :
sshd[2281638]: Accepted password for XXX ...
means that XXX login has succeeded.

But I have recently fou

[ more ]  [ reply ]
Re: Exact "Accepted password for" log message meaning 2011-01-19
Daniel Llewellyn (diddledan gmail com)
simulate connection with netcat 2011-01-15
guy mobi1e me (1 replies)
Hello,

my long-term intention is to write a cross-platform GUI-authpf-client
without using libssh or libssh2. Before I get into that I'd like to simulate
the ssh-connection/authentication via netcat.
I took a look at the RFCs but don't get it working.

% nc 127.0.0.1 22
SSH-2.0-OpenSSH_5.2
SSH-2.0-

[ more ]  [ reply ]
Re: simulate connection with netcat 2011-01-17
Salvador Fandino (sfandino yahoo com) (2 replies)
Re: simulate connection with netcat 2011-01-17
Felipe Martins (martins felipe security gmail com) (1 replies)
Re: simulate connection with netcat 2011-01-19
guy mobi1e me (1 replies)
Re: simulate connection with netcat 2011-01-22
Felipe Martins (martins felipe security gmail com)
Re: simulate connection with netcat 2011-01-17
niklas|brueckenschlaeger (niklas brueckenschlaeger de)
Check if J-PAKE enabled? 2011-01-13
Rafalski, Doug R (N-The SI) (doug r rafalski lmco com) (1 replies)
Reading the vulnerability related to J-PAKE (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4478) it seems J-PAKE support is experimental and not normally enabled. Is there an easy way to verify this from a running instance?

Specifically I want to check that a server running 5.6p1 in cygwi

[ more ]  [ reply ]
RE: Check if J-PAKE enabled? 2011-01-13
Joachim Thuau (Joachim Thuau heavy-iron com)
Questions about ChrootDirectory 2011-01-10
Mike Kelly (mike pair com)
Hello,

I'm aware of the fact that ChrootDirectory requires that the target
directory is root-owned, and I think I've mostly understood why that is
necessary, at least within the context of someone who has full shell
access. However, I am wondering if that possibility for privilege
escalation still

[ more ]  [ reply ]
[Openssh & TACACS+]Authneticating with TACACS+ 2011-01-06
akshar kanak (akshar kanak1 gmail com)
Dear team
I have following scenario
SSH client <->SSH server (openssh) <-> TACACS+

I need to authenticate at SSH server using an account whcih
is registered at TACACS+ server . But the problem is the same user
entry will not at available in /etc/passwd .When Openssh

[ more ]  [ reply ]
Bad passphrase with public key authentication 2010-12-29
Niels Stevens (steniels gmail com) (1 replies)
Hey everybody,

I'm having the strangest error using ssh.

I'm setting up my server to use public key authentication.

I'm using my macbook as a client and my ubuntu server for the ssh server.

When at first I didn't succeed to make a connection I tried to connect from my server to my macbook.
Just

[ more ]  [ reply ]
Re: Bad passphrase with public key authentication 2010-12-29
Greg Wooledge (wooledg eeg ccf org) (1 replies)
Re: Bad passphrase with public key authentication 2010-12-29
Niels Stevens (steniels gmail com)
Putty; Win7; IE8 2010-12-27
Al Grant (acgrant ihug co nz) (2 replies)
Hi All,

I REALLY hope someone here can help me. I have been trying to setup a
SSH tunnel so that when I surf the net on my laptop I can SSH into my
Ubuntu box at home and go through that for web page traffic.

Now I tried to connect to Ubuntu@home from laptop running Win7 with:

putty -ssh my.d

[ more ]  [ reply ]
Re: Putty; Win7; IE8 2010-12-28
ADFHAU (openssh bachelorguy com)
RE: Putty; Win7; IE8 2010-12-27
Mark Lavi (mlavi sgi com)
file tokens on login 2010-12-13
Andrey Vul (andrey moshbear net) (2 replies)
Is there an option or patch for ssh so that, on login, a file, e.g.
/tmp/ssh-ip.ad.dr.es-user-XXXXXX so that I can use it as an
authentication token for multi-factor login?

And to have a creation hook so that updating the htdigest and
.htaccess's IP filter with the file name value isn't limited
by

[ more ]  [ reply ]
Re: file tokens on login 2010-12-27
Jean-Michel Pouré - GOOZE (jmpoure gooze eu)
Re: file tokens on login 2010-12-14
Saif El Sherei (SSherei npcegypt com)
umask for internal-sftp users ? 2010-12-09
Vilius Mockûnas (v mockunas gmail com)
Hello,

Running Debian 5.
SSH version 5.1p1-5.

How do I set umask for sftp only users ?

Users are jailed - that means they use internal-sftp:
# cat /etc/ssh/sshd_config
..........
Match group group1
ChrootDirectory /home/%u
X11Forwarding no
AllowTcpForwarding no

[ more ]  [ reply ]
wrong DISPLAY variable 2010-12-07
Asif Iqbal (vadud3 gmail com) (1 replies)
iqbala@jp2 { ~ }$ ssh -Y hlr-brixuat-01.example.net.
Password:
Last login: Tue Dec 7 17:33:46 2010 from jp2.example.net
[iqbala@hlr-brixuat-01 ~]$ xterm
_X11TransSocketINETConnect() can't get address for hostname:6000: Name
or service not known
xterm Xt error: Can't open display: hostname:0.0

[iqb

[ more ]  [ reply ]
Re: wrong DISPLAY variable 2010-12-07
Darren Tucker (dtucker zip com au) (1 replies)
Re: wrong DISPLAY variable 2010-12-07
Asif Iqbal (vadud3 gmail com)
(Page 4 of 223)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus