I am trying to create a certificate case user logon via ssh. On the server I have openSSH and a few users. I want to be able to assign a user a certificate to connect remotely via SSH.
View 1 Replies
How I can create and install a formal SSL certificate for Fedora issued by Geocerts or Verisign?
View 1 Replies View RelatedI have shared keys setup on my domain, so I never type my password to login anymore.
I've forgotten my password now. This is a problem because only my user can sudo. Password authentication for root has been disabled, so without my password, I cannot do maintenance on my web server.
Is there a way to reset my password as my [now only] key-authenticated user?
Specifically, can this be done on CentOS 4?
I need to renew my SSL cert for my Mahara site and I follow the instructions below. But after I finish answering all the questions for the csr, I'm supposed to copy a portion of the cert into a web form. However I can't seem to find the server.csr so I can do this. Were this file goes?
Here is a step-by-step description:
Make sure OpenSSL is installed and in your PATH.
Create a RSA private key for your Apache server (will be Triple-DES encrypted and PEM formatted):
$ openssl genrsa -des3 -out server.key 1024
Please backup this server.key file and the pass-phrase you entered in a secure location. You can see the details of this RSA private key by using the command:
$ openssl rsa -noout -text -in server.key
If necessary, you can also create a decrypted PEM version (not recommended) of this RSA private key with:
$ openssl rsa -in server.key -out server.key.unsecure
Create a Certificate Signing Request (CSR) with the server RSA private key (output will be PEM formatted):
$ openssl req -new -key server.key -out server.csr
Make sure you enter the FQDN ("Fully Qualified Domain Name") of the server when OpenSSL prompts you for the "CommonName", i.e. when you generate a CSR for a website which will be later accessed via https://www.foo.dom/, enter "www.foo.dom" here. You can see the details of this CSR by using:
$ openssl req -noout -text -in server.csr
I have configured my Laptop running OS 11.1 as an ftp server with vsftpd behind a router on my home network. I have managed to get it working so that I have authenticated users who can connect and write using the external ip address. The problem is that the authenticated user, rather than being allowed access only to the folder in question (/srv/ftp), can browse my entire directory structure.
When I tried this from a different computer (a Mac) from within my home network (but connecting through the external IP address) with fileZilla, using a user name I established as the authenticated ftp user (not my own uname), I could even download and write to other locations in the directory. I had another person try from outside the network, and they could browse the entire directory, but couldn't download from it. how can I confine an authenticated FTP user to the designated ftp directory?
I want to limit what a authenticated user can do on my Linux server. I've set the default shell to rbash, but I know a knowledgeable user can switch shells. Can I use file permissions to deny execution rights to /bin/bash to anyone who is not in a particular group? And if that works, how do I find out what other shells are installed on my server (Ubuntu 9.10)?
View 7 Replies View RelatedI'm trying to install an Ubuntu cloud on my home network - I've been following this guide. When I arrived at STEP 6: Install an image from the store PART 3: Click on the Store tab I get the following error message on the page: Error 60: server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none
View 1 Replies View RelatedI was trying to configure user authentication in SSH using certificate method.As u all know the usual way of authentication is using the ssh-keygen method. But i want the another method where we create a certificate key and send it to the CA, which signs it and send back etc etc.I cannot find any unique procedure in the net to configure this method.
View 3 Replies View RelatedI've a user account in a remote machine. but it doesn't have a home directory in that machine.Is it possible to create a home directory without having root account details. If yes, how it can be done.
View 1 Replies View RelatedI am looking at creating two user accounts for "contract system admins"..These guys will be performing sys admin duties for a sever -- however, I am still concerned about security of data. For example, the server contains password information for our database, etc.Besides making them sign an NDA, etc. what other security mechanisms could I put in place to ensure that they don't just go buck wild. For example, when someone makes a sudo command, is this logged?
what are some recommendations for general security practices?
In my machine, there are 2 mount points - / and /userdata. From the root user, I want to create an oracle user at the /userdata mount point, i.e the home of the oracle user should be mounted on /userdata.
View 7 Replies View RelatedI'm trying to create a user john with default password 'abcdef'. I used the following command.
useradd john -p abcdef
I can't login with the password. in /etc/shadow file I can see the password in clear text format. how I can create a user along with password.
How to create the user without creating home directory?
View 7 Replies View RelatedThis may be a rookie mistake, but I created a user (new user) in Linux on a Ubuntu system and didn't actually create the home directory for this user. Now, when I log in, it says there are problems... If I delete the path home/<new user> and try to log in the system tells me I can use root as home directory but I will likely experience problems, and then it won't let me log in. What is the best way to create this directory with the appropriate permissions? Should I just create another user and delete this one?
View 1 Replies View RelatedI recently used the newusers command to generate several user accounts from a text file. That process seemed to go well until I tried to su into one of the new accounts.
This behavior appears for all the accounts that were created from the text file and the newusers command. It seems that several configuration files that should have been autogenerated for these new users were never created. I was able to confirm this was the problem by copying .bashrc and .bash_profile from a user that was created with the "useradd" command into the /home/newaccount directory. After logging off and logging into the newaccount again, the issue is corrected.For the record, I just read this forum post and I'm looking for an alternative to this. If this is the most efficient way to accomplish my goal, then I'll try the route mentioned in the thread. I'm still open to alternatives.
creating template (phpldapadmin 1.2.0.5). I create new template where im creating User Account (possixAccount) but i need to create Generic: Ldap Alias that will be created in other ou than account and i need both in one template.
View 1 Replies View Relatedi have rhel 5.2 and i want to create user using useradd command without creating user home directory and not throwing any warning/error about not creating any home directory.i have tried useradd -u "$NEW_UID" -g <gid> -d "/home/$1" -M "$1"where $1 is user name and $NEW_UID is i am calculating.it throws error as useradd: cannot create directory /home/$1which i dont want to come , how to prevent this?
View 1 Replies View RelatedWhat is the simplest way I can get a secure, authenticated SMTP server running on my Linux machine so my family can use it to send mail from hostile networks?
Currently I have exim bound to 127.1:25 so if I can send mail from my laptop using ssh -L2525:localhost:25 wolever.net... But I'd like exim (or some other SMTP server) to bind to, eg, 0.0.0.0:2525 and accept authenticated SMTP connections.
we have a Red Hat server and I'm using wget in crontab to run some PHP scripts. We've been doing this for some time now and it's been working fine.I tried to add another script using wget to run a PHP script behind HTTP authentication. However, despite the fact that the URL works fine and the username and password are correct, we are getting Connection Timed Out errors each time. What might cause wget to work for unauthenticated URLs, but not authenticated ones?
I've tried --user=/--password=, --http-user=/--http-password and Username:Password@ in the URL and all three fail the same way. Here's the command in question:
[blahblah user]# wget -t 5 -O /dev/null 'http://Username:Password1!@test.example.com/sub/dir/file-name.php'
--2010-07-07 10:11:55-- http://Username:*password*@test.example.com/sub/dir/file-name.php
Resolving test.example.com... 000.000.000.000
[code]....
Again, wget works, the file with authentication works, but wget calling the file with authentication does not work.
UPDATE: Actually, I get the same timeout if I access the authenticated URL without authentication. Could that mean that Apache is rejecting wget requests for authentication outright?
I am having fedora 12 with php and mysql rpms installed on my computer.. but I am unable to log in...nether create an user?
View 3 Replies View RelatedI recently created a new user account in ubuntu linux, and created a file called xsession so that I can boot directly into xmbc when I log into that account. Is there anyway to delete the home folder for that account. I can view the file but when I try to delete it is says I do not have apporite permisions to delete the file.
I removed the account and deleted the group but it still shows up when I type in the address /home/xmbc
Is there anyway I can delete this file. It also will not let me create any new user accounts is there any way I can fix these prolbems without totaly reinstalling the system.
how do i create non root user( that is multiple accounts as in windows) in ubuntu..
View 2 Replies View RelatedCan anyone using kde4.7 from R47 repo please try creating a new user and see if you get this with the panel. SUSE Paste My current user is fine, which came through the upgrade from 4.6
View 5 Replies View RelatedI have network with Kubuntu server with 5 pcs all of them are using windows XP. The network is already designed for sharing files and folders. I have to create a new user and a share folder, also given permission to that user to access this folder. Now when I try to map it gives following error "The network folder specified is currently mapped using a different user name and password, first disconnect any existing mappings to this network share"
View 2 Replies View RelatedI have just installed an SSD as a secondary hard drive and formatted as ext4. (the Ubuntu installation is on a different drive)how I would go about creating a directory on the SSD that is owned by the user 'Test user'.
View 8 Replies View RelatedI was wondering which software do you use to create user manuals? Like in windows we use .chm files for user manuals and there are .chm file creators available.
In Ubuntu, what do you use?
I have a requirement to create more than one user (one initial user with sudoer privs and one "user" user that has no special privs) upon installation of xubuntu 10.04 or 10.10 (doesn't matter). My goal is to create a "automatic" installation process with as little user interaction as possible through use of preseeding and remastersys so that all the programs and their configurations are set upon first boot. If this is not possible, (which I don't believe it is, but it's Linux!) then I think I can make use of a bash script that will run on first boot of the operating system and then delete itself so that it does not run again. My questions are:
* Is there anyway to create more than one user upon or during installation?
* If no to the above, how would I go about making a bash script that runs on first boot and deletes itself after being ran?
I created a user and I want the particular user in multiple groups. How Should I and after creating the user,If I want to delete that user from a particular group.
View 1 Replies View RelatedI have created a ftp user in centos 5,but it got all permissions to delete files in other location,view the entire directory and create any folder in every place. How to deny this permissions to the particular user.And please help me to give permissions only to a specified location given by the root.
View 4 Replies View RelatedI'm configuring a fresh install of Debian 8 and I'm having a problem creating new user accounts, using XFCE.I'm using the console for setting new user accounts, without any problems yet when I log in the user accounts to check if everything is ready to use I get a persistent message from the system warning the session is in kiosk mode.I've went through several step by step guides I've found over the net, went to the XFCE wiki trying to find an answer for this, with no success. I've even tried deleting user accounts and recreating it but the problem persists.
View 4 Replies View Related
