Secure remote login in scripts

Similar Messages

• Script to open Remote Login in "sharing" not working after move to 10.5

  Under 10.4 I sued the following script to open Remote Login (tick the box). Under 10.5.6 it does not work.
  do shell script "/usr/bin/open /System/Library/PreferencePanes/SharingPref.prefPane"
  activate application "System Preferences"
  tell application "System Events"
  tell process "System Preferences"
  click checkbox 1 of row 6 of table 1 of scroll area 1 of tab group 1 of window "Sharing"
  delay 3
  tell application "System Events"
  quit application "System Preferences"
  end tell
  end tell
  end tell
  I get the following error:
  System Events got an error: Can’t get tab group 1 of window "Sharing" of process "System Preferences". Invalid index.
  Anybody know why?

  give this a spin
  activate application "System Preferences"
  tell application "System Events"
  tell process "System Preferences"
  click button "Sharing" of scroll area 1 of window "System Preferences"
  select scroll area 1 of group 1 of window "Sharing"
  select static text "File Sharing" of row 3 of table 1 of scroll area 1 of group 1 of window "Sharing"
  select checkbox 1 of row 3 of table 1 of scroll area 1 of group 1 of window "Sharing"
  click button "Options…" of splitter group 1 of group 1 of window "Sharing"
  click checkbox "Share files and folders using FTP" of sheet 1 of window "Sharing"
  delay 0.5
  select button 2 of sheet 1 of window "Sharing"
  keystroke return
  delay 0.5
  tell application "System Events"
  quit application "System Preferences"
  end tell
  end tell
  end tell
  -----------------

• Script to turn on remote login in preferences

  I like to make a script that would open port 22 (remote login) in the sharing pane.
  I have
  do shell script "/usr/bin/open /System/Library/PreferencePanes/SharingPref.prefPane"
  this brings up the correct window. But now I am stuck, how do I get the remote login to ‘switch’ on?
  Thanking you for suggestions and help.

  Solved it.
  script is:
  do shell script "/usr/bin/open /System/Library/PreferencePanes/SharingPref.prefPane"
  activate application "System Preferences"
  tell application "System Events"
  tell process "System Preferences"
  click checkbox 1 of row 4 of table 1 of scroll area 1 of tab group 1 of window "Sharing"
  end tell
  end tell
  But in order for it to work yo need to turn on "ENABLE ASSISTIVE DEVICES" in the "UNIVERSAL ACCESS" preferences pane.
  so simple...

• Script to enable remote login

  In my job I am constantly required to SSH into other computers to fix problems via terminal. Is there any known script that I can use to enable remote login on my computer quickly rather than having to go to system preferences every time?
  Thanks for your help!

  I'm not sure I understand this request.
  In my job I am constantly required to SSH into other computers to fix problems via terminal.
  OK, fair enough...
  Is there any known script that I can use to enable remote login on my computer
  Enabling SSH/remote login on your computer isn't going to help at all. You need to enable remote login on the remote computer.
  It may be possible to have an AppleScript execute commands on a remote machine, if that's what you mean, but in order for this to happen the remote machine has to have Remote Apple Events enabled. In my experience, there are even fewer machines with Remote Apple Events enabled than there are with Remote Login - it's disabled by default and is unlikely to be enabled by most users.
  So if Remote Login isn't enabled, your only solution is Remote Apple Events, but if that's off you're pretty much out of luck (unless you have some kind of screen sharing setup running).

• What is the best way to remotely login to another Mac?

  My mother & I recently decided to take the plunge from the PC world to Apple world.  I have an MBP w/ OS X 10.8.2, and she has the same w/o the recent OS upgrade (10.7.?).  While we're both still at the bottom of the learning curve, I'm a little further ahead and am constantly running over to her place to trouble shoot/assist her with the transition.  I've been researching ways to remotely login to her computer and am now more confused than when I started.  Can anyone point me in the right direction?  I basically want to be able to login to her system and takeover as if I were on site.  And, while I don't know if my research, thus far, has brought me any closer to a solution, it has raised a few questions:
  1)  Do I simply want to go with 3rd party sofware like Logmein and will the free versions be sufficient or are they just trial offers?
  2)  Or is ARD my best option and am I right in assuming we'd each have to pony up the $80 for installs on both MBPs?
  3)  Some of the discussions talk about much more expensive ARD fees with multiple licenses.  Am I correct in assuming these are meant for network administrators and wouldn't be necessary for my purposes?
  4)  I noticed a free VCN version available from the App Store but came accross posts which seem to indicate possible security issues.  Are these valid concerns and does ARD address them?
  5)  Will I run into problems because we're using different OSs?
  6)  I attempted to follow instructions for an "ssh" remote login that I found by doing a search of 'remote login' under the Apple Support.  But when a password was requested, I didn't seem to be able to enter one into the command line.  Again, I'm new to Macs, but the cursor didn't move when I entered characters, so I was left wondering whether characters were being entered or whether this is Appple's '*****' feature used to guard passwords.  Either way, after 3 attempts, my efforts were repeatedly terminated.  Unfortunately, I'm not even sure I was entering a valid password as the article I'm referring to didn't specify how to set a password.  I used a VCN password I had set up under the Remote Management option in the Sharing utility under System Preferences.  I'm assuming this was the password they were looking for but couldn't be 100% sure as the instructions I followed were not related to "ssh" logins nor were they from Apple Suppot.  Anyway, is this "ssh" login worth pursuing and does it function independently or does it only work in conjuction with ARD?  If it is a stand alone solution, where can I go for better guidance?  The Apple Support link I used was:  http://support.apple.com/kb/PH1112.
  7)  Being recovering Windows users, we both have MS Office for Mac 2011 which has MS's Remote Desktop Connection app.  But from reviewing a few posts, it looks like that comes with it's own set of issues.  It also kind of defeats the purpose as I'm trying to wien myself off of MS.  But if someone out there has experience and suggests this as the "ultimate" solution, I'm willing to listen.
  I know I've babbled on quite a bit and I don't actually expect anyone to take the time to answer all of my questions.  But I'm hoping I might get a collective answer, and more importatnly, I'm really hoping to narrow the field and get generally guidance on the best Mac-to-Mac remote login solution.  Thanks in advance for any advice.

  Hi gregory,
  It is a big subject, and the following article sets out various options.
  http://www.macworld.com/article/1152611/remoteaccesintro.html

• Getting ssh_exchane_identity error when trying to login from my machine or a remote one. Already enabled remote login

  I updated my system from Snow Leopard to Lion 7.3.1
  Wanted to login from remote computer and then enabled the remote login in Preferences/Sharing, but when trying to login I get the error ssh_exchange_identification also if I try to login from my machine with ssh username@localhost.
  I tried all what I could find on internet forums, but nothing changed.
  Please help!!
  Daniela

  Hi Linc
  here is the output of ssh -vvv localhost
  OpenSSH_5.6p1, OpenSSL 0.9.8r 8 Feb 2011
  debug1: Reading configuration data /etc/ssh_config
  debug1: Applying options for *
  debug2: ssh_connect: needpriv 0
  debug1: Connecting to localhost [::1] port 22.
  debug1: Connection established.
  debug3: Not a RSA1 key file /Users/danielamaurizio/.ssh/id_rsa.
  debug2: key_type_from_name: unknown key type '-----BEGIN'
  debug3: key_read: missing keytype
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug3: key_read: missing whitespace
  debug2: key_type_from_name: unknown key type '-----END'
  debug3: key_read: missing keytype
  debug1: identity file /Users/danielamaurizio/.ssh/id_rsa type 1
  debug1: identity file /Users/danielamaurizio/.ssh/id_rsa-cert type -1
  debug1: identity file /Users/danielamaurizio/.ssh/id_dsa type -1
  debug1: identity file /Users/danielamaurizio/.ssh/id_dsa-cert type -1
  ssh_exchange_identification: Connection closed by remote host
  [1]+  Done                    edit sshd_config
  The following line comes from /var/log/secure.log
  May 23 04:59:46 <danielamaurizio> sshd[2267]: fatal: /var/empty must be owned by root and not group or world-writable.
  but I'm not sure if it's want you asked me; the owner of /var/empty is root of group sys.
  By the way I had a problem that Lion cancelled the owner root and I had to use System Preferences User and groups to add root again, with the result that now I can use only the comman "su root" and not "sudo anycommand"  anymore.
  Thanks for halp and cheers
  daniela

• System preferences remote login address naming HELP PLEASE

  Hello,
  This problem is driving me crazy... Enabling Remote Login (under Sharing Preferences) gives me a note that "To log in to this computer remotely, type ssh [email protected]". The problem is the part of the address named "wrongname".  I have no idea where it is picking this up. I've gone back under the networking preferences and confirmed it's not coming from there. The netbios name by the way is "CARLS-MACBKPRO1". Enabling file sharing gives me the same "wrongname". Any idea where this is coming from and how do I fix it?
  Running 10.7.3 on a Macbook Pro.
  Thanks in advance.
  Carl

  The question is how are you trying to connect to the server? and where are you testing from?
  You say you can 'log-in to the Mac-Mini from the internal network', but what protocol are you using?
  The ports you've opened are for web (80), FTP (21) and SSH (22), so if you're using any other protocol (e.g. AFP for file sharing), it won't work.
  So, you need to decide what protocol you want to use and forward the appropriate ports. For example, if you do want to use AFP to transfer files, you'll need to open port 548.
  An alternative is to just use port 22 and use SSH tunneling to tunnel other protocols over a secure connection (normal AFP, web, etc. traffic is not secure and tunneling these protocols over an SSH connection provides an enhanced level of security.

• Script to export Security file using maxl script

  can anyone provide me the Script to export Security file using maxl script.It should create a log file and a batch file should also be there to schedule the Maxl script.Please help me with this

  Hi,
  You can use something like
  [b]login admin password on localhost;
  [b]spool on to 'c:\temp\log.txt';
  [b]export security_file to data_file C:\temp\sec_file.txt;
  [b]spool off;
  [b]logout;
  Then you can have a batch file that just calls the maxl script
  essmsh name_of_maxl_script.mxl
  The batch script can then be scheduled.
  Cheers
  John
  http://john-goodwin.blogspot.com/

• Remotely login error on windows server 2003 using gemalto smart card

  I am getting this error when trying to log on windows server 2003 remotely using smartcard. We have our own CA. We are able to successfully logon on windows server 2008 using same card.

  Hi,
  Base on my research, Event 537 indicates that a logon attempt was made and rejected for some reason other than those covered by explicit audit records in this category.
  Would you please provide more details?
  Are there any related warnings and errors under Application Logs or System Logs?
  By remotely login, do you mean logon via RDP?
  Here are some related links below for you references:
  Event 537
  http://www.microsoft.com/technet/support/ee/transform.aspx?ProdName=Windows%20Operating%20System&ProdVer=5.0&EvtID=537&EvtSrc=Security&LCID=1033
  Smart Card and Remote Desktop Services
  http://technet.microsoft.com/en-us/library/ff404286(v=WS.10).aspx
  Please get back to us with the necessary information at your earliest convenience.
  Best Regards,
  Amy Wang

• After Clean Install of Yosemite, Screen Sharing & Remote Login are turned on in Sharing preferences

  Do you guys know if this is a bug?
  I created a custom USB Yosemite installer using the 'createinstallmedia' binary inside the Yosemite installer.
  Booted iMac with this USB installer and proceeded to install Yosemite (fresh formatted drive). No problems.
  When I log in however, and check the Sharing PreferencePane, both Screen Sharing and Remote Login are turned on.
  I've tried this multiple times (repartitioning the drive each time and I have created the installer media twice).
  I'm posting this I guess more as a report as the solution is simple enough (uncheck these services).
  But it's definitely a security risk.

  Just 2 minutes before I received your reply I solved the problem.  I have been running a software firewall (DoorStop X) on the Mac Pro.  It turns out that I had not allowed traffic over two ports necessary for Home Sharing– port 3689 and udp port 5353.  When I corrected this everything is back to normal.
  I did the clean install because I've been having intermittent problems with several apps including Compressor, Safari, and to a lesser extent FCP.  I've been contemplating doing this for several months because of all the garbage that has collected on my system over several years since I last started from scratch.  I have a bad habit of installing things that add kext files and otherwise modify the OS.  I decided to get rid of all that stuff.  I'm glad I did.  All the problems I was having seem to have resolved.  Safari runs 3x faster than it ever has.  And I no longer have the headaches that Compressor was giving me.  I think I'll take better care of my system from now on.
  John

• Osascript for remote login does not work with Leopard

  We are testing Leopard on one computer in our labs. The only problem so far is that the osascript that we use to remote login to the computers stopped working (although it works fine on the Tiger machines):
  osascript <<EndOfMyScript
  tell application "System Events"
  keystroke "public"
  keystroke tab
  delay 0.5
  keystroke return
  keystroke tab
  delay 0.5
  keystroke return
  keystroke return
  end tell
  EndOfMyScript
  This is a public account with no user password. I've read the discussion below, but have not been able to tweak the command so that it works with Leopard. Any suggestions?
  Thanks.
  http://lists.apple.com/archives/Remote-desktop/2007/Nov/msg00045.html

  I'm having a similar problem - the script below works with my G5 iMacs running 10.4.9 but not the Intel iMacs running 10.4.8. It almost works - the username and password appear in the right boxes, so I run around the room pressing the Return key.
  # This script when used with ASR Send UNIX command will login workstations at the LoginWindow.
  # The script assumes that the cursor is focused in the Name field.
  osascript -e 'tell application "System Events" to keystroke "username"'; \
  osascript -e 'tell application "System Events" to keystroke tab'; \
  osascript -e 'tell application "System Events" to delay 0.5'; \
  osascript -e 'tell application "System Events" to keystroke "password"'; \
  osascript -e 'tell application "System Events" to delay 0.5'; \
  osascript -e 'tell application "System Events" to keystroke return'
  Message was edited by: Catocop

• JAAS J2EE Remote Login

  How can i login to a remote SAP NetWeaver 6.40 SR1 j2ee server?
  I try this:
  LoginContext vLContext = new LoginContext("SAP-J2EE-Engine", new ABSCallbackHanlder("id", "psw));
  vLContext.login();
  and this work fine if this run under the web container.
  But if is used from a external client (on other machine), this exception occurs:
  Caused by: java.lang.SecurityException: Unable to locate a login configuration
          at com.sun.security.auth.login.ConfigFile.<init>(ConfigFile.java:97)
  I have the jndi.properties in classpath.
  Using JBoss the system properties "java.security.auth.login.config" must be set to the auth.conf file.
  I think that for SAP i need to do it also, but i don't find this kind of configuration file.... Where i can find it?
  Thank You
  Roberto
  ABSCallBackHanlder is:
     public class ABSCallbackHanlder implements CallbackHandler
        protected String iUserName;
        protected String iUserPassword;
        public ABSCallbackHanlder(String aUserName, String aUserPassword)
           iUserName = aUserName;
           iUserPassword = aUserPassword;
        public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException
           for (int i = 0; i < callbacks.length; i++)
              if (callbacks<i> instanceof TextOutputCallback)
                 TextOutputCallback toc = (TextOutputCallback) callbacks<i>;
                 switch (toc.getMessageType())
                    case TextOutputCallback.INFORMATION :
                       System.out.println(toc.getMessage());
                       break;
                    case TextOutputCallback.ERROR :
                       System.out.println("ERROR: " + toc.getMessage());
                       break;
                    case TextOutputCallback.WARNING :
                       System.out.println("WARNING: " + toc.getMessage());
                       break;
                    default :
                       throw new IOException("Unsupported message type: " + toc.getMessageType());
              else if (callbacks<i> instanceof NameCallback)
                 NameCallback nc = (NameCallback) callbacks<i>;
                 nc.setName(iUserName);
              else if (callbacks<i> instanceof PasswordCallback)
                 PasswordCallback pc = (PasswordCallback) callbacks<i>;
                 pc.setPassword(iUserPassword.toCharArray());
              else
                 throw new UnsupportedCallbackException(callbacks<i>, "Unrecognized Callback");

  Hi Roberto,
  AFAIK, to do a remote login you need to use the RemoteLoginContext instead of the pure JAAS LoginContext. For more details you can have a look at this page in the documentation: http://help.sap.com/saphelp_nw04/helpdata/en/ac/ce417acc9a4d48aa52fa562cb9b194/frameset.htm
  Hope that helps!

• NotSerializableException: javax.security.auth.login.LoginContext

  Hi,
  I'm using the JAAS-API for a JDBC-based user login procedure.
  Although it worked fine for months, suddenly it doesn't work anymore (i.e., after user enters name+password and clicks login-button, nothing happens besides the browser bottom line 'waiting for localhost'). I tried to debug this, but then Creator always crashed.
  I just looked inside the server-log-files and found the following exception stack trace. It was stored in the files during every login procedure.
  Because it worked fine before, this issue probably is not critical and could be solved by reinstalling Creator, but anyway I would greatly appreciate, if someone would have an idea what the problem is.
  Regards,
  Felix
  [#|2006-07-10T17:41:50.494+0200|INFO|sun-appserver-pe8.2|org.apache.catalina.session.ManagerBase|_ThreadID=17;|Cannot serialize session attribute SessionBean1 for session 5918037189ed39ffffffffc4ba0330aded7d1
  java.io.NotSerializableException: javax.security.auth.login.LoginContext
      at java.io.ObjectOutputStream.writeObject0(ObjectOutputStream.java:1075)
      at java.io.ObjectOutputStream.defaultWriteFields(ObjectOutputStream.java:1369)
      at java.io.ObjectOutputStream.writeSerialData(ObjectOutputStream.java:1341)
      at java.io.ObjectOutputStream.writeOrdinaryObject(ObjectOutputStream.java:1284)
      at java.io.ObjectOutputStream.writeObject0(ObjectOutputStream.java:1073)
      at java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:291)
      at org.apache.catalina.session.StandardSession.writeObject(StandardSession.java:1775)
      at org.apache.catalina.session.StandardSession.writeObjectData(StandardSession.java:985)
      at org.apache.catalina.session.StandardManager.doUnload(StandardManager.java:543)
      at org.apache.catalina.session.StandardManager.unload(StandardManager.java:482)
      at org.apache.catalina.session.StandardManager.stop(StandardManager.java:711)
      at org.apache.catalina.core.StandardContext.stop(StandardContext.java:4675)
      at org.apache.catalina.core.ContainerBase.removeChild(ContainerBase.java:956)
      at com.sun.enterprise.web.WebContainer.unloadWebModule(WebContainer.java:2122)
      at com.sun.enterprise.server.WebModuleDeployEventListener.moduleUndeployed(WebModuleDeployEventListener.java:198)
      at com.sun.enterprise.server.WebModuleDeployEventListener.moduleUndeployed(WebModuleDeployEventListener.java:278)
      at com.sun.enterprise.admin.event.AdminEventMulticaster.invokeModuleDeployEventListener(AdminEventMulticaster.java:920)
      at com.sun.enterprise.admin.event.AdminEventMulticaster.handleModuleDeployEvent(AdminEventMulticaster.java:905)
      at com.sun.enterprise.admin.event.AdminEventMulticaster.processEvent(AdminEventMulticaster.java:427)
      at com.sun.enterprise.admin.event.AdminEventMulticaster.multicastEvent(AdminEventMulticaster.java:139)
      at com.sun.enterprise.admin.server.core.DeploymentNotificationHelper.multicastEvent(DeploymentNotificationHelper.java:288)
      at com.sun.enterprise.deployment.phasing.DeploymentServiceUtils.multicastEvent(DeploymentServiceUtils.java:155)
      at com.sun.enterprise.deployment.phasing.ServerDeploymentTarget.sendStopEvent(ServerDeploymentTarget.java:283)
      at com.sun.enterprise.deployment.phasing.StopPhase.runPhase(StopPhase.java:126)
      at com.sun.enterprise.deployment.phasing.DeploymentPhase.executePhase(DeploymentPhase.java:71)
      at com.sun.enterprise.deployment.phasing.PEDeploymentService.executePhases(PEDeploymentService.java:639)
      at com.sun.enterprise.deployment.phasing.PEDeploymentService.stop(PEDeploymentService.java:409)
      at com.sun.enterprise.deployment.phasing.PEDeploymentService.stop(PEDeploymentService.java:444)
      at com.sun.enterprise.admin.mbeans.ApplicationsConfigMBean.stop(ApplicationsConfigMBean.java:725)
      at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
      at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
      at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
      at java.lang.reflect.Method.invoke(Method.java:585)
      at com.sun.enterprise.admin.MBeanHelper.invokeOperationInBean(MBeanHelper.java:305)
      at com.sun.enterprise.admin.config.BaseConfigMBean.invoke(BaseConfigMBean.java:360)
      at com.sun.jmx.mbeanserver.DynamicMetaDataImpl.invoke(DynamicMetaDataImpl.java:213)
      at com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)
      at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)
      at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)
      at sun.reflect.GeneratedMethodAccessor25.invoke(Unknown Source)
      at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
      at java.lang.reflect.Method.invoke(Method.java:585)
      at com.sun.enterprise.admin.util.proxy.ProxyClass.invoke(ProxyClass.java:54)
      at $Proxy1.invoke(Unknown Source)
      at com.sun.enterprise.admin.server.core.jmx.SunoneInterceptor.invoke(SunoneInterceptor.java:272)
      at com.sun.enterprise.admin.jmx.remote.server.callers.InvokeCaller.call(InvokeCaller.java:38)
      at com.sun.enterprise.admin.jmx.remote.server.MBeanServerRequestHandler.handle(MBeanServerRequestHandler.java:92)
      at com.sun.enterprise.admin.jmx.remote.server.servlet.RemoteJmxConnectorServlet.processRequest(RemoteJmxConnectorServlet.java:69)
      at com.sun.enterprise.admin.jmx.remote.server.servlet.RemoteJmxConnectorServlet.doPost(RemoteJmxConnectorServlet.java:94)
      at javax.servlet.http.HttpServlet.service(HttpServlet.java:767)
      at javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
      at sun.reflect.GeneratedMethodAccessor82.invoke(Unknown Source)
      at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
      at java.lang.reflect.Method.invoke(Method.java:585)
      at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:249)
      at java.security.AccessController.doPrivileged(Native Method)
      at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
      at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:282)
      at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:165)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:257)
      at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:55)
      at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:161)
      at java.security.AccessController.doPrivileged(Native Method)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:157)
      at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:263)
      at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
      at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:225)
      at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:173)
      at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
      at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170)
      at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
      at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:132)
      at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
      at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:933)
      at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:189)
      at com.sun.enterprise.web.connector.grizzly.ProcessorTask.doProcess(ProcessorTask.java:604)
      at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(ProcessorTask.java:475)
      at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTask(ReadTask.java:371)
      at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.java:264)
      at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:281)
      at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThread.java:83)
  |#]

  just to make it clearer, the important Exception seems to be the following line:
  java.io.NotSerializableException: javax.security.auth.login.LoginContext
  The first thought of mine was to add an implements Serializable to the class, but that's not possible, because the class is read-only.
  So does anyone know, how this could be solved?

• Keychain not updated for Remote Login

  Since installing Lion on both machines: When I connect to my G5 Powermac from my MBAir, I use the Keychain to remember my password. This feature worked in previous OS Versions by selecting  the 'Remember' Option in the dialogue (meaning you would only see the following dialogue when your password changed on the destionation machine).
  With Lion, the Password onthe Keychain is not updated when the flag is set. As a result, when I select the destination machine from the Finder, I always have to wait for 'Not Connected' message (while the process tries to log in with my old password). Then, I have to 'Connect As. ..." and enter my current password (every rassafrassin' time).
  Can someone please patch this thing.
  Thanks,
  g

  I'm having some trouble with an RD server Win 2008 on a domain. I have a group called domain\authorizedpeople that I would like to enable remote access for. I added this group to the gpo: Computer Configuration\Policies\Windows Settings\Security Settings\Local Policies\User Rights Assignment\Allow log on through Terminal Services. I also added this group to server manager > configure remote desktop on the server itself, and I added this group to the remote desktop users' group on the server for good measure.
  When I try to log on using an account in that group, I get "The connection was denied because the user account is not authorized for remote login". However when I go to server manager > configure remote desktop and add that specific user, it works fine.
  Is there a reasonable explanation for this? I really don't want to have to add...
  This topic first appeared in the Spiceworks Community

• Remote Login attempt

  I followed the instructions on the following web site:
  http://www.mactech.com/articles/mactech/Vol.20/20.07/VNCOverSSH/index.html
  That gave me the ability to do a remote login over my local network. However, if I attempt to login over the Internet, I get the following message:
  Please configure Apple Remote Desktop to allow VNC Viewers to control the screen.
  Unknown authType 30,35
  There is no Apple Remote Desktop in Systems Preferences on my computer that I know of. In the Sharing Pane of Systems Preferences, there is an item named Remote Management with a “Computer Settings” button that has a checkbox item “VNC viewers may control screen with password.” Checking this item doesn’t appear to correct the problem.
  Both remote and local Macs are running OS 10.5.6. Any ideas?

  if I select Remote Login - SSH (which is what I think I need), the default port is shown as 22. Changing the 22 to 5900 is what made it possible to do remote control over the Internet. But, does that mean I no longer have an SSH tunnel for security? I was under the impression that Port 22 is the port used for SSH.
  ssh by default connects via port 22. VNC by default connects via port 5900.
  ssh will provide a secure encrypted connection. VNC will send everything INCLUDING the password in clear text across the internet where anyone can steal it!
  So, yes, if you forward port 5900 to your Mac and have your VNC client connect directly to port 5900, then you can skip the ssh part. But just so you are aware that everything you do over that connection can be observed, and the password can be stolen. Which means someone could then connnect to your Mac via the stolen VNC password and do whatever they wanted.
  The odds of someone stealing your VNC password, are in direct proportion to where you make your connection. If for example you make it from your own property where only you are allowed to use your ISP connection, then it is unlikely as long as you have a good WiFI encryption (WPA), or similar location where you know the network setup is secure.
  If you are going to be doing this from a public WiFi location; coffee shop, hotel, etc... then anyone could sniff your network traffic and steal that unencrypted VNC password along with your connection information.
  Here is what I do. I have a high numbered port on my Airport Extreme base station forwarded to my Mac's port 22. I then make an ssh connection to my home and establish a VNC tunnel
  ssh -p 23456 -L 5909:localhost:5900 [email protected]
  It then make a VNC connection to
  localhost:5909
  This tells my VNC client that the local end of the ssh tunnel port 5909 is what I want it to connect with. The ssh tunnel will then encrypt all traffic to my home over the established tunnel and deliver that traffic to my home Mac's port 5900 where my home Mac's VNC server is listening.
  ssh has encrypted everything, including the password exchange.
  As an added bonus, I can establsh ssh keys which allow me to skip the password and instead exchange very long *ssh keys* which is even more secure.
  The use of the high numbered port cuts down on attempted breakins to know ports. It is mostly noise, but it is noise I do not need to subject my Airport Extreme and my Mac's TCP/IP stack to.