On host running; $ ssh -XfC -c blowfish user@guest_IP xterm$ /usr/bin/X11/xauth: error in locking authority file /home/user/.Xauthority X11 connection rejected because of wrong authentication. xterm Xt error: Can't open display: localhost:10.0 (hanging here) /home/user/.Xauthority is an empty file, just created. $ sudo ls -l /home/user/.Xauthority-rw-rw-rw- 1 user user 1 2010-07-19 03:16 /home/user/.Xauthority
Nor lock exists. The password is correct. $ ssh user@guest_IP xterm I can connect the guest.
I have two machines X , Y . X is running on runlevel 5 while Y is running in runlevel 3 , I am trying to connect from machine x to y using X11 forwarding using the following command.
ssh -X username@IP
But i have the following error message.
"X11 connection rejected because of wrong authentication"
I am running Ubuntu 10.04 LTS. I am trying to run a query browser for mysql but keep receiving the following error:
X11 connection rejected because of wrong authentication.
The application 'mysql-query-browser-bin' lost its connection to the display localhost:10.0; most likely the X server was shut down or you killed/destroyed the application.
I installed Jessie with Cinnamon alongside Win 7 - all went quite well though I did have to do a bit of guessing along the way.
Following online tutorials etc, I tried to install sudo from the terminal. It did not go well - some stuff appeared that was not shown in the instructions from many sites. So I abandoned it, or so I thought.
Then I discovered that my root password was no longer recognised. So I reset it, following online instructions.
This was successful apparently, as I can log in as root and see this in the terminal.
But on trying to start Synaptic ( and later others), I found that the new root password would is not authenticated, but my user password does authenticate successfully. This seems to be the wrong way round!
I tried moving firestarter boot script around, calling firestarter in /etc/rc.local and in gnome-sessions (start programs) and so forth. Alas, only way to get it started is from root terminal with # firestarter --start-hidden & i use wicd, wlan0 and a router. Network monitor and iptables are installed.
I've been using the Ubuntu desktop for a couple of years now, but I don't have much experience using the terminal.
I've just set up a home server using Ubuntu-server 64bit which will be headless and its main function will be a Mythtv backend.
I've worked out how to use VNC to send a desktop from the server to my laptop, but when I try to use any programs which require root privileges such as synaptic or the user/groups manager, the pop-up asking for authentication refuses to accept my password.
Is there a setting I need to change on the server which prevents remote users from getting root privileges on the desktop?
I have 2 laptops running Ubuntu 10.04. One connects to my Linksys wireless modem fine while the other does not. The one that does not connect, will connect fine within the instances of Windows XP SP3 and Puppy Linux 5.1 that run on the same laptop. Ubuntu wireless worked fine with version 8.04 on this laptop before upgrading to 10.04.
When trying to connect within 10.04, Ubuntu pops up the dialog box to enter the authentication key. It rejects the correct key, and after a moment, pops up the same dialog box asking for the key again. I'm using WEP 40/128-bit encryption and the key I enter in the dialog box is the correct 26-character key.
The laptop is a Toshiba Satellite Pro 6000 (1g ram/40g disk). Here are some vital outputs root@user-laptop:/home/bsmis# iwconfig
lo no wireless extensions. eth0 no wireless extensions. irda0 no wireless extensions. eth1 IEEE 802.11b ESSID:"kr_wireless" Mode:Managed Frequency:2.457 GHz Access Point: None Bit Rate:11 Mb/s Sensitivity:1/0
I am having trouble with my local ssh connection. In my hosts.deny I have ALL, and in my hosts.allow I have my computer. I cannot connect unless I comment out the ALL in hosts.deny. Why is it not allowing a connection?
Using Wicd and it keeps dropping out or telling me "bad password" when the password is in fact correct. I even know it works because the first couple of times it worked, but the connection wasn't sustained for more than a few seconds each time. My reasoning is my wireless is functional in Ubuntu, there's no reason it shouldn't be in Debian. Wireless network card is ASUS PCE-N13. Ralink driver is installed. WPA-supplicant is installed. Gnome Network Manager is also present, though I've heard that it doesn't support my particular situation.
This is kind of a double question thread and I'm hoping they can be resolved together. I'm running Debian wheezy and I modified my /etc/apt/sources.list file to include "contrib non-free" on the ends so I could install flashplugin-nonfree for Chromium. After an apt-get install flashplugin-nonfree, I notice the error of:
I tried to go to a video streaming site and I get the typical message saying I have a missing plugin. So I uninstalled flashplugin-nonfree and tried to go another route of getting the flashplayer-mozilla package from "http://www.debian-multimedia.org wheezy main non-free" hoping that might work. I installed their GPG key from here and did the apt-get update and apt-get install flashplayer-mozilla. I noticed that it would pull in tons of dependencies requiring about 250MB. I backed out of that and removed those lines from my sources.list file, trying to go the original route again. Now I'm stuck with that GPG key installed and I don't use that repository.
So my question is, how can I get flashplugin-nonfree working with Chromium, and how can I remove the key I installed from the .deb package from debian-multimedia.org?
If I am running a script, let's say a install script. Is there a way to make Su repeat authentication rather then just returning "Authentication failed" and continuing the script?
Suddenly Debian started rejecting my user pw and I have to login as root. Perhaps this is a coincidence, but this started when I re-booted after adding Russian keyboard layout in etc/default/keyboard. The Russian keyboard added successfully.
Being logged in as root, renewed the pw of my user account (actually assigned the same as wes previously), got confirmation the the pw has been changed. Reloaded. Yet it keeps complaining that the pw is wrong.
I have been having problems with a lot of my emails being marked as spam or flat out being rejected. After doing some research, it looks like they are being denied due to my HELO and EHLO replies. Here is an example of my header file:
I have installed Timeshift. Administrative password is requested when I click Timeshift icon in Gnome menu. I enter the password (or paste it to be sure) but it always returns with "incorrect password, please try agian" message. I am sure that I type my password correctly.
I looked at the icon's properties. It runs "timeshift-launcher". I changed it as "gksudo timeshift" or "sudo timeshift" or "gksu timeshift", enabled "Launch in terminal", disabled, but nothing changed. Always same password request window appears and it rejects my password.
However when I run "sudo timeshift" or "gksudo timeshift" command in Terminal it accepts my password and runs.
When I run for example Synaptics via Gnome Menu, password request window is with black background and it accepts my password. However when I run Timeshift, password request window is with gray background and it rejects.
Root password was not defined in my system during installation and I am the only user. I run administrative commands via sudo without any problem.
Tried to update nonfree flashplugin on my Debian laptop, a Toshiba Satellite A100-VA3 today: update-flashplugin-nonfree --install This is the result: ERROR: sha512sum rejected install_flash_player_10_linux.tar.gz More information might be available at: [URL] What to do next. Is there a alternative to non-free?
I'm trying to configure Iptables and I just want to block everything but http/https. However, my connection is pppoe, so I have the ppp0 interface. Pretty much every Iptables tutorial that I found don't teach how to deal with this kind of setup. I'm forwarding the ppp0 to eth0 and I could configure the input rules and they're working. After this, I need to configure the output but nothing seems to work.
The current working rules are: Code: Chain INPUT (policy ACCEPT 7858 packets, 5792K bytes) pkts bytes target prot opt in out source destination 299 201K ACCEPT all -- any any anywhere anywhere state RELATED,ESTABLISHED 0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:www 0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:https 11 820 DROP all -- any any anywhere anywhere
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- eth0 ppp0 anywhere anywhere 0 0 ACCEPT all -- ppp0 eth0 anywhere anywhere state RELATED,ESTABLISHED Chain OUTPUT (policy ACCEPT 10791 packets, 1951K bytes) pkts bytes target prot opt in out source destination
I don't understand what those "state RELATED,ESTABLISHED" rules do. Also, I don't know if this rules are secure, because i'm very confused about the ppp0/eth0 interfaces.
I am trying to run xeyes on a remote machine via ssh connection. Both my local and remote machines are Ubuntu 10.04. I connect to remote server via ssh -X and It does not forward to display to my local machine...
Code: root@goliath:/opt/install/bits# ssh -X -l root duke root@duke's password: Linux duke 2.6.32-21-generic #32-Ubuntu SMP Fri Apr 16 08:10:02 UTC 2010 i686 GNU/Linux Ubuntu 10.04 LTS [Code]....
what I have: Belkin G Wireless Router Model F5D7234-4. To attempt to get Subsonic working, I changed the port forwarding settings (Belkin calls it Virtual Servers) to forward port 4040 to my desktop computer. I then saved changes, and my wireless disconnected. I waited about 3 minutes, and nothing was happening, so I restarted my router. This left me in the position that I am in now. Even when the router and modem are fully booted, the router does not broadcast my SSID. In addition, a wired connection will not connect to the network through the router. This leaves me completely unable to use wireless, and unable to change any settings in the router.
I am using ubuntu in my new office, and I can't get the network working. The "official" OS installed was a Windows, and it has a special "dial-up" app for the LAN connection (not wireless). My network admin is apparently not helpful, since he actually knows nothing about the internals for the "dial-up" app (he did not even ever heard of TTLS, PEAP, MD5, etc), and claimed that no OS except for Windows can work...
Well, I have tested various configurations with my Mac laptop, and apparently the LAN connection requires 802.1X authentication, and it's using a very weird combination "TTLS+PEAP+MD5" (if I check these options in Mac OS X, the connection works). However, in NetworkManager, I can't select both TTLS and PEAP, and moreover, TTLS does not work with MD5. So, is there anything I could try?
I have a weird problem with ssh, I am trying to ssh to a solaris server (sparc) running solaris 10 from my Ubuntu box and as soon as it authenticates the password it closes the connection. The box is located on a internal network in a wiring closet with no ability for me to access console but i still have a working ssh session from 2 days ago with what i'm trying to comb through settings and trying to resolve the issue. It also has 2 NIC's and I cannot connect to the either ruling out hardware problem. I checked if there is a limit of the number of active connections and the was no limit. I was able to connect mitiple session till 2 days ago (at one point i had on my machine 8 active ssh sessions to the same server).
Here is the output of ssh -vvv: Code: $ ssh -vvv -l user1 10.100.xxxxx OpenSSH_5.5p1 Debian-4ubuntu4, OpenSSL 0.9.8o 01 Jun 2010 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug2: ssh_connect: needpriv 0 ..... debug3: channel 0: close_fds r -1 w -1 e 6 Connection to 10.100.50.4 closed. Transferred: sent 1768, received 1688 bytes, in 0.1 seconds Bytes per second: sent 12077.9, received 11531.4 debug1: Exit status 254
Is it possible to monitor WiFi connections and identify who are connected through OpenLDAP? If so, how will authentication be possible? By the way, I'm open if OpenLDAP is inappropriate for such authentication purposes and scenario.
while tampering with the settings for my wireless connection by right-clicking on the icon on the top menu i was originally asked for my password for authentication. i selected the option to remember the password for future sessions unintentionally.
how do i get it back to the original setting so that it asks for a password before allowing me into the editing screen? i tried preferences > system > authorisations > network-manager-settings, but it didnt work.
Has anyone else been having problems with their wireless network connections since the network manager updates? I have two different networks that I connect to and have in the past had no problems since figuring out what files were missing and had to be either created or corrected and copied into the correct locations. I have tried everything I know to get my secondary wireless connection working to no avail(currently connected through my neighbors unprotected network), from deleting the connection, rebooting and recreating it, editing the files and copying them back into the correct locations and nothing works.
I have even had many crashes while using network manager. Using system-network-config eliminated the crashes but still does not allow the connection to connect. It attempts to connect and just hangs on waiting for authentication after prompting for the WEP key and clicking OK. What in the heck is going on since the devs created all these updates and have once again broken the most important aspect of any usable system, the network? I'm running F14 and KDE 4.6.1.
I'm extremely new to SuSE Linux. I wanted to move away from Windows and so I decided to reload my Desktop with SuSE linux.I have had no trouble until now. I'm trying to connect to my work VPN connection. From my laptop (which unfortunately is Vista) I'm able to connect without any issues. However, when I tried out the KVPN application on my SuSE linux, it just doesn't work. I get the error: Authentification has failed. As a side note, when I type ping google, the packets are received 100% but when I ping my company address, no packets are received. Hope this info is useful.
I tried to get my 3G connection up with my Lenovo Ideapad S10-2 and its built-in Ericsson 3G modem. Well, as I found out after some time of debugging, it didn't work because my network provider only accepts PAP authentication, and regardless of the configuration within NetworkManager, the ModemManager always tried CHAP authentication.
I guess this is because the dialog of selecting PAP, CHAP etc. seems only be used for pppd, but not for the internal setup of the 3G modem.
For the Ericsson (and possibly other modems), the authentication for a packet connection is done with the AT*EIAAUW command, which is hard-coded in modem-manager to use the defaults for authentication.
I patched my ModemManager to allow only PAP in the AT*EIAAUW command, and this worked out perfectly. You can find the patch below. Beware that this is certainly not something that should be included by default, only given here for reference.
Frankly, I don't know who to address to talk about a possibility to get this feature (authentication method selection) in the ModemManager in a clean fashion. I'd be happy to provide some assistance to improve the ModemManager. If someone could provide me with a hint who to talk to or what to do next.
For your reference: the "00010" in this case references a bit-field of 5 positions, whereas the bits mark the authentication algorithms (MS-CHAPv2, MS-CHAP, CHAP, PAP, NONE) respectively. So, 00010 enables PAP and disables the rest.
Seismicmike here. My first post. I'll try to be as clear and concise as possible. For the sake of this post, I'm going to use 1.2.3.4 as a place holder for my public IP. On my web server, I would like to be able to access the /var/ftp directory through a web browser. I have successfully done so with Google Chrome, but I cannot access the directory in Firefox or IE. Both FF and IE ask me for authentication but then time out attempting to load the directory.
I suspect that there may be something up with switching to passive mode and/or that this issue may be more with my configuration of Firefox and not with the server (seeing as how Chrome works). Another possibility may be related to SSL. When I connect with FileZilla, I have to use the FTP over Explicit SSL/TLS option in order to connect. In any case I still would like to fix it. I would also like to avoid having to install FireFTP if at all possible.
Steps to reproduce (not that you can without my actual IP =J):
* Open Chrome * Go to ftp://1.2.3.4 * Enter username * Enter password
I have a fast server running Debian 5 (I tried to upgrade and everything broke.
So I'll stay with Lenny): Core 2 Duo 4Gb RAM RAID 0 100mbit
When I use the -X command and try and run applications to my desktop, it is VERY slow. Firefox takes 20 seconds+ just for a right-click menu to appear. It is completely unusable because of this speed. And this is after a clean install of Debian 5.
I've tried on multiple clients (Windows and OS X) and it is always slow! Even though both computers and connections are fast. My home connection is 100mbit too....
So the problem is not bandwidth or resources, the problem must be with the server/software? Any ideas why tunneling X11 applications are so slow? Is there an alternative X11 software I could use on the server?
1 thread in FTP to this server gives 10MB/s (100mbit). So X11 should be fast? And btw, I'm tunneling through SSH.
I've been trying to forward some ports using iptables for some time now, but still haven't figured out how to get it to work..What i'm trying to accomplish is to forward all traffic from port 80 to port 8080, and all traffic from port 443 to port 8443, this because i would like to run tomcat as a non-root user, and the original ports can only be used as root.. I've currently setup my iptables like this:
# Generated by iptables-save v1.4.2 on Wed Nov 10 16:44:45 2010 *nat :PREROUTING ACCEPT [39350:6120333]
This is where it starts: I have 2 networks. The first: 192.168.1.0/24 composed by the router which has access to the internet with the IP 192.168.1 and the server (who is a gateway) with the IP 192.168.1.42 The other network: 192.168.2.0/24 composed by the gateway with the IP 192.168.2.1 and the clients (on the 192.168.2.0/24 subnet). To sum up, the gateway has 2 IPs (192.168.1.4(eth0) and 192.168.2.1(eth1)). On this gateway, I have squid installed (and listening on port 3128). I also made a redirection to redirect some computers who want to access to the web (port 80) to squid (port 3128) with this command: /sbin/iptables -t nat -A PREROUTING -m mac --mac-source CLIENT_MAC -p tcp -m tcp --dport 80 -j REDIRECT --to-port 3128
At this stage, everything works fine. The clients can access the web by the proxy without "knowing". What I wanted to do, is redirect also the port 443 (HTTPS). Actually, when a client wants to access to, for example, [URL]. He cannot. So I would want to be able to redirect people (without passing by any proxy) directly to google. Like a NAT. But the problem is that I can't. The thing would be to, in the gateway, take all the packets with port 443 in destination and handle them to the router 192.168.1.1. Then, when the router sends the packet back, the gateway takes the packet and handles it to the client. I tried putting ip_forward to 1, but the problem is that all IPs and ALL PORTS are forwarded. And I just want port 443 to be forwarded.
I've had Debian on my laptop for around 4 months which I rarely use. I'm using Squeeze since it seems to be the only release that will work with my ethernet card.The internet had been working fine for a couple of months but broke when I tried to allow port forwarding for torrents. I could only connect to the internet after this by using:
