General :: Does RSA Authentication Work After Deleting Private Key?
Feb 14, 2011
I was testing my authorized_hosts setup, so deleted my local private key. I then successfully ssh'd into my remote server using RSA authentication. I was expecting to get a permission denied, seeing as there is no longer a private key to guarantee I'm me. Guessing I'm misunderstanding something fundamental. Anyone know what's going on? It doesn't look like ssh-add is holding my private key:jake@clyde:~$ sudo pkill -9 ssh-agent
View 2 Replies
ADVERTISEMENT
Jan 28, 2011
I created a private/public pair. I put the public on github.But I can never push to github.Every time, it says public denied. In order to push, I need to do this:eval ssh-agentssh-add ~/.ssh/github_dsaThis is driving me nuts that I have to do this every time. So, I just put it in my ~/.bashrc file. I feel like that's a hack. Is this normal?
View 1 Replies
View Related
May 7, 2010
After years with Linux and using ssh on a daily basis I have to admit I've never setup public/private key authentication and I've never run passwordless logon to ssh. It's not that I've never tried, I have - I've just never got it working. That to me is an almost alien concept as I am a tinkerer at heart and rarely stop until something is working the way I'd like it to. I get the principle of what's going on but I've always had a mental block about it.
View 3 Replies
View Related
Mar 27, 2010
So after tinkering for a while, I was able to configure ssh for private/public key authentication and disabled Password-Authentication. In the past I had some issues with people brute force trying passwords/usernames so I want to avoid this, but I need some form of secure FTP that now doesn't work due to the aforementioned setting.
View 2 Replies
View Related
Mar 1, 2011
I keep getting the above message when trying to login to my server using a private key,is there something I am missing from the configs here?Quote:
#$OpenBSD: sshd_config,v 1.73 2005/12/06 22:38:28 reyk Exp $
# This is the sshd server system-wide configuration file. See
# sshd_config(5) for more information.
[code]...
View 8 Replies
View Related
Mar 27, 2011
I have 2 different networks: the first one is gateway machine (eth0), and the second is a private machine (eth1). So, I've configured the iptables and forwarding stuff and when I try to ping [URL]... on the gateway machine, it works, while it doesn't work on the private network.
View 7 Replies
View Related
Apr 6, 2011
My system is
Code:
We use courier mail server for pop3 mailboxes, and postfix for in/out mail delivery
Code:
Now Pop3 users, could not authenticate with there username/pass
It does not work now, and I have this message in my log file
Code:
I could see in my postfix.main
Code:
And I could successful run query from mysql
Code:
I tried to change the password for this user, insert new user to the same tables, but no success to authenticate
I suppose that the problem is authentication of courier mail demon (which in my mind ) should work with mysql 'mail' database in the way is postfix work
Code:
I could not find any reference with courir demon to mysql database username,password to authenticate users..
So, my quetions is, if it's possible to tracert mysql db to find out if courier demon 'asking' for authentication, or is there any error with this, and which configuration file should be checked, in order to find out what authentication method is courier mail demon use for.
View 1 Replies
View Related
Aug 18, 2010
i noticed that all files can be seen by another computer if the drive is accessed
can I stop this? can i set a private folder?
View 7 Replies
View Related
Mar 27, 2011
I have 2 different networks: the first one is gateway machine (eth0), and the second is a private machine (eth1). So, I've configured the iptables and forwarding stuff and when I try to ping google.com on the gateway machine, it works, while it doesn't work on the private network. Note: I am using VmWare 7. I need your quick assistance about this issue.
View 2 Replies
View Related
Aug 23, 2010
I have set up an apache 2 server, but can't seem to get authentication to work properly. I have set up this in my apache2.conf:
Code:
<Directory /var/www>
AllowOverride AuthConfig
</Directory>
<Directory /var/www>
AuthType Basic
[Code]...
I have created the passwords file with htpasswd and defiantly have the right password for bob. However, when I try to log in the box just comes up over and over again and never authenticates. What am I doing wrong? I'm a newbie, so please bear with me if I've missed something really stupid.
View 4 Replies
View Related
Nov 26, 2010
I changed my permissions in my .ssh folder and now when I use a piece of software that uses my private key, I have to type my password each time. What should my permissions be on my id_rsa file to not have to type a password each time I use an app that uses it?
Currently my permissions are set to:
-rw-------@ 1 Jody staff 114 Nov 4 23:29 config
-rw------- 1 Jody staff 1743 Oct 21 2009 id_rsa
-rw-------@ 1 Jody staff 397 Oct 21 2009 id_rsa.pub
-rw-------@ 1 Jody staff 3855 Sep 13 22:35 known_hosts
View 2 Replies
View Related
Apr 6, 2011
After instalation of Suse 11.4, wifi worked totally correctly, until the first restart. Then it ceased to work. It looks like everything is working correctly until WPA authentication.
My wifi device
Code:
So until now it looks for me that everything works correctly, but after trying to connect the problems begin.
dmesg output:
Code:
So the wlan interface authenticates, and then disauthenticates by local choice? a bit about the reason points to wpa_supplicant. Many peoples report that they have multiple copies running, and killing them solves a problem. Sadly I've only one copy, and after being killed it restarts.
Here is wpa_supplicant.log on the first run after install(when it worked)
Code:
And here is log of what happens after restart:
Code:
I've no way to change from WPA authorization.
View 1 Replies
View Related
Apr 15, 2011
When I am upgrading, installing something or doing something that requires me to be Authenticated by using my password I just type it in and hit enter. However, each time I just click return after typing in the password it does not work. The window accepts my password but thats it and the window just sits there until it times out a few mins later. For this to work properly I have to type the password and then use the mouse to click the Authentication button. Why is this? Is there a way to solve this so I can just type in my password and click return like I do with everything else?
View 2 Replies
View Related
Aug 10, 2010
whenever my facebook client automatically logs off in pidgin i have to not only provide my password but a word authentication (where it shows you a picture with letters in it arranged in a strange way and theres 2 of them seperated by a space, but whenever i enter in the letters (i know that all of the letters entered into that text box are right) but for some reason it doesn't let me back in it just prompts me again to enter the words i see and still doesn't let me in
i had to uninstall it and re-install it to get it to come back up again
View 1 Replies
View Related
Oct 24, 2010
I'm trying to modify my Linux server's Samba config so that each user gets their own private folder, in a similar way to having a private 'home' folder. Is it possible to create a samba share that maps to different places, depending on username? E.g if 'bob' connects they see the contents of /documents/bob and if 'fred' connects they see the contents of /documents/fred, and so on?
(I know this is what the [homes] share does, but I want another specifically for each user's private documents that won't get mixed with all the Linux user cruft such as dotfiles and things)
View 1 Replies
View Related
Nov 17, 2010
For using SSH, why does a host also need to have a public and private key? And how can I generate a public/private key pair for myself?
View 5 Replies
View Related
Feb 8, 2010
set up a redhat nat router for a classroom we have out main network is 192.168.110.0/24 and we ran out of ip address for all the school computers so i added a nat router to a large classroom with a network address of 192.168.116.0/24 almost everything is working fine except a connection to the ads server with a program called medisoft im guessing my nat is blocking it how can i open up all ports to and from my 192.168.116.0/24 network as it doesnt need any protection
View 2 Replies
View Related
Oct 7, 2010
How do I stop one user account from being able to read files in another user account.
Right now once i log in, I can easily navigate to /home/[username] and copy/read any file. How do I make it thus that only /home/[username]/shared is allowed to be read/copied.
I would also like to prevent listing of directories.
View 2 Replies
View Related
Jul 19, 2010
Another question though...i have a fedora 12 server set up and i have created 3 sudo users. I have created 3 putty keys (public and private) using putty key gen and basedn my research i was told to put the public keys in /home/"user"/.ssh/authorized_keys .I did that but when i tried to log on using the key...the server is saying "server refused key" could anyone assist in this issue
View 4 Replies
View Related
Jan 11, 2011
I have one doubt that is how can we actually connect a system in private network with the system in a public network using IP address. I have one system in private network (in my campus) I need to connect it with the system on public network (home) using IP address and communicate with each other. How can I do it or is there any other way of connecting these two systems more easily?
View 4 Replies
View Related
May 14, 2011
I am new with IP tables stuff and i have a problem....
i have a pc Contain a fedora OS and i want to make a small network (4 PCs Contain XP OS) and using the pc of fedora OS as a firewall
i want to Prevent the ping (i think it called(ICMP)) in the privat network and prevent one of the PCs from Browsing Internet(prevent port 80 and 81 as i think)
and i still don't know how to make the Internet go Through the firewall to the private network...
note: WAN = eth0
LAN = eth1
View 9 Replies
View Related
Jul 25, 2011
I have users using Windows XP, Windows 7, Linux (Fedora) and Mac. They all are in a single private network and all access internet through a Linux (RHEL5) system in which Squid acts as gateway. The same is true with my branch offices too except that private network is different and gateway system uses Fedora 9 instead of RHEL5. All the branch offices are connected through point to point leased lines with the head office for file transfer.
My requirement is this: I have a web server located at head office. Presently I am able to access this server from my branch offices through internet. I would like to access this server from branch offices through leased lines. This too I am able to access if I do routing in users system. The file transfer is taking place through one to one system at two ends by creating static routing in those systems.
View 1 Replies
View Related
Sep 5, 2010
I tried to run FreeRadius1.17 in RHEL5 using PEAP authentication.#radiusd -X Run fine.authenticating only one user.if "user" is authenticated and second user "user2" just looping and will not authenticated. Again if "user2" authenticated "user" is looping?here the logWaking up in 4.5 seconds.rad_recv: Access-Request packet from host 192.168.0.3 port 1028, id=239, length=219
User-Name = "user"
NAS-IP-Address = 0.0.0.0
Framed-MTU = 1488
[code]...
View 1 Replies
View Related
Dec 29, 2009
I configured ssh on one of my servers to require public/private key authentication and deny access to login requests not using a public/private key. Now I need to unconfigure that,but I can't remember how I did it. I've looked through ssh_config and sshd_config, and nothing rings a bell. Googling only tells me how to enable public/private key authentication, not how to require it or stop requiring it.
View 2 Replies
View Related
Feb 8, 2011
Suppose that I am in a private network of computers (say each having ip addresses 192.168.. ). Some of the machines( we have no information regarding their ip, name and no physical access to the servers) in the network are connected to internet and they run an http proxy at some port say 3128. Is there a program which can be run on Windows or Linux which will give me the list of machines(ip addresses and ports if possible) acting as proxy servers?
View 1 Replies
View Related
Aug 23, 2010
Just wondering, what happens when you delete every single file on a running Linux system?
# rm -rf /
View 3 Replies
View Related
Mar 5, 2011
I've a big text, and I would like to delete several lines in vim. I was thinking in doing that with marks, but I can't do it. Below it's an example text and I want to delete from <FROM HERE> to <TO HERE>. How can I do that?
[Quote] .....
View 3 Replies
View Related
Jan 10, 2010
I want to configure SSH key-based authentication and SSH password Authentication in same machine for different user .
View 1 Replies
View Related
Mar 14, 2011
On Ubuntu server 10.10, with a relay smtp server with authentication via postfix; I keep getting 535: Incorrect authentication data. I'm sure my username and password is correct. Heres how I set up postfix: I created a file called smarthosts.conf in my /etc/postfix/ directory that contains the following:
[Code].....
my server uses plain text authentication on port 25. I would like to use security like SSL, but this particular server is unsecured.
View 9 Replies
View Related
Apr 12, 2010
I am a non-root user, and have made a directory into which other users in my group can write. The directory is setgid, so files and directories within it have the same group.I can delete files placed into this directory, but if a user creates a subdirectory with files in it, I can't seem to delete those. Is there something special I can do (other than, say, bothering the user in question or the sysadmin about it) to get rid of this subdirectory?
EDIT: Inevitably, of course, someone asks "why?"The shared folder in question is a mercurial repository. We can't use a shared-account ssh-key-based server for this like mercurial-server, and we can't just host it externally for various reasons. But that part works fine.We use Redmine for project management, but it does not yet read the repo index for file contents - it reads the working directory. So the working directory must be kept up-to-datecrontab has been disabled by the sysadmin, so that's out. So I naïvely put a changeset hook in the shared repo that performed an "hg update". This seemed to work fine initially, until, of course, someone pushed a commit with a new directory. While I had vague thoughts of trying to make a setuid script for the hook, I'll probably just consider safer avenues.
View 1 Replies
View Related
