Update ssh
Hi guys,
i would like to update ssh on my solaris 10 server and i am looking for some help how to do it.
i would like to update it to the newest possible version.
my current version is:
-bash-3.00# ssh -V
Sun_SSH_1.1, SSH protocols 1.5/2.0, OpenSSL 0x0090704f
will you be able to give me some help here?
thank you.
unfortunately we don't have a contract with oracle.
i wanted to patch up ssh to close security vulnerability.
i downloaded latest openssl and openssh but have some errors while i wanted to compile.
SunOS 5.10 Generic_120011-14 sun4u sparc SUNW,Sun-Fire-V245
-bash-3.00# ./config
Operating system: sun4u-whatever-solaris2
NOTICE! If you know that your GNU C supports 64-bit/V9 ABI
and wish to build 64-bit library, then you have to
invoke './Configure solaris64-sparcv9-gcc' manually.
You have about 5 seconds to press Ctrl-C to abort.
Configuring for solaris-sparcv9-gcc
Configuring for solaris-sparcv9-gcc
no-ec_nistp_64_gcc_128 [default] OPENSSL_NO_EC_NISTP_64_GCC_128 (skip dir)
no-gmp [default] OPENSSL_NO_GMP (skip dir)
no-jpake [experimental] OPENSSL_NO_JPAKE (skip dir)
no-krb5 [krb5-flavor not specified] OPENSSL_NO_KRB5
no-md2 [default] OPENSSL_NO_MD2 (skip dir)
no-rc5 [default] OPENSSL_NO_RC5 (skip dir)
no-rfc3779 [default] OPENSSL_NO_RFC3779 (skip dir)
no-sctp [default] OPENSSL_NO_SCTP (skip dir)
no-shared [default]
no-store [experimental] OPENSSL_NO_STORE (skip dir)
no-zlib [default]
no-zlib-dynamic [default]
IsMK1MF=0
CC =gcc
CFLAG =-DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -m32 -mcpu=ultrasparc -O3 -fomit-frame-pointer -Wall -DB_ENDIAN -DBN_DIV2W -DOPENSSL_BN_ASM_MONT -DSHA1_ASM -DSHA256_ASM -DSHA512_ASM -DAES_ASM -DGHASH_ASM
EX_LIBS =-lsocket -lnsl -ldl
CPUID_OBJ =sparcv9cap.o sparccpuid.o
BN_ASM =bn-sparcv9.o sparcv9-mont.o sparcv9a-mont.o
DES_ENC =des_enc-sparc.o fcrypt_b.o
AES_ENC =aes_core.o aes_cbc.o aes-sparcv9.o
BF_ENC =bf_enc.o
CAST_ENC =c_enc.o
RC4_ENC =rc4_enc.o rc4_skey.o
RC5_ENC =rc5_enc.o
MD5_OBJ_ASM =
SHA1_OBJ_ASM =sha1-sparcv9.o sha256-sparcv9.o sha512-sparcv9.o
RMD160_OBJ_ASM=
CMLL_ENC =camellia.o cmll_misc.o cmll_cbc.o
MODES_OBJ =ghash-sparcv9.o
ENGINES_OBJ =
PROCESSOR =
RANLIB =/usr/ccs/bin/ranlib
ARFLAGS =
PERL =/usr/bin/perl
THIRTY_TWO_BIT mode
DES_UNROLL used
BN_LLONG mode
RC4 uses uchar
RC4_CHUNK is unsigned long
BF_PTR used
sh: /usr/ccs/bin: cannot execute
-bash-3.00# make
making all in crypto...
/bin/sh: /usr/ccs/bin: cannot execute
make: *** [build_crypto] Error 1
-bash-3.00# more testlog
OpenSSL self-test report:
OpenSSL version: 1.0.1c
Last change: Sanity check record length before skipping explicit IV ...
Options: no-ec_nistp_64_gcc_128 no-gmp no-jpake no-krb5 no-md2 no-rc5 no-rfc3779 no-sctp no-shared no-store no-zlib no-zlib-dynamic static-engine
OS (uname): SunOS VENUS 5.10 Generic_120011-14 sun4u sparc SUNW,Sun-Fire-V245
OS (config): sun4u-whatever-solaris2
Target (default): solaris-sparcv9-gcc
Target: solaris-sparcv9-gcc
Compiler: Configured with: ../configure with-as=/usr/ccs/bin/as with-ld=/usr/ccs/bin/ld enable-shared enable-languages=c,c++,f77
Thread model: posix
gcc version 3.4.6
Failure!
make[1]: Entering directory `/install/openssl-1.0.1c'
making all in crypto...
/bin/sh: /usr/ccs/bin: cannot execute
make[1]: *** [build_crypto] Error 1
make[1]: Leaving directory `/install/openssl-1.0.1c'
make[1]: Entering directory `/install/openssl-1.0.1c'
testing...
/bin/sh: /usr/ccs/bin: cannot execute
make[1]: *** [tests] Error 1
make[1]: Leaving directory `/install/openssl-1.0.1c'
what does this line mean? sh: /usr/ccs/bin: cannot execute how can i fix it?
Similar Messages
-
I upgraded two of my Macs, a Mac Mini, A, and a MacBook Air, B, to OS X 10.9.4, using Software Update. After that, I could no longer ssh from A to B, but ssh from B to A worked fine. After some poking around for differences, I then noticed that in Mac B, I had made an exception for /usr/libexec/sshd-keygen-wrapper in System Preferences: Security & Privacy: Firewall: Firewall Options. When I deleted and re-added that, ssh from A to B worked again.
But on A, I have no such "hole" in the firewall, yet ssh from B to A works fine. What is going on?
I no longer recall whether I had myself initially added that sshd-keygen-wrapper setting on B... and why exactly I had got the (perhaps incorrect) idea that it is needed. (But if it is, why would one have to add it manually, and wht does ssh from B to A work fine without it?)Let me add that Mac A is the machine I am physically logged in on, and I did the check sshing from B to A in a Remote Desktop session, so the situation is not entirely symmetrical.
-
Prime 2.0 Update SSH Credentials
Hello Everyone!
I am currently trying to find a way to update all SSH Credentials in Cisco Prime 2.0.
I can not seem to find it anywhere in prime or any information about it on the web and admin guide. Is this a feature that is missing or am I just missing it?
Thank You!
CoryHi Cory,
This can be done with the help of TEMPLATES in PI :
CLI Template Creation::
In the lifecycle view of Prime Infrastructure navigate to Design -> Configuration Template -> CLI Template -> CLI.
Name the template something of your choosing. Select the type of device the template is
intended for.
Note that you can select a high level grouping ('Routers' or 'Switches and Hubs') or drill down to a specific model. The CLI content section is where you specify the actual commands to be applied
to the device.
Note that you should not begin with 'config t', the first line should be the command as you would issue it from global configuration mode.
For example I simply add the line 'ip ssh version 2' and click save.
Publish your CLI Template ::
After you have saved the template a 'Publish' button appears immediatly below the CLI content pane. Click the button to publish your template. There will be a popup in the lower right hand corner of the screen notifying you if you have successfully published the template.
Deploy your CLI Template::
Just as a 'Publish' button appeared when you saved your template, so will a 'Deploy' button. Click this button and a 'Template Deployment' popup will appear. Use the 'Device Selection' area to filter the 'Value Assignement' pane, which is where you select each device.
hope it will help
Thanks-
Afroz
***Ratings Encourages Contributors **** -
Here's my problem: We've got a network of 5 macs and 1 linux server. I could manage all computers via ssh with no problem, no matter what machine I sat at ... that's the beauty of ssh
However, after some recent updates ssh doesn't work or connect reeeally slowly. When I finally do get a password prompt and enter the password, the connection has been closed by he other side (timeout occured).
Here's some output. I've tried adding 10.1.1.100 to /etc/hosts and gave it a host name, but that didn't really work either. Neither did adding 'GSSApiKeyExchange no' on the server side.
Apple claims they don't support 'ssh' ... figures.
Does anyone else have a clue what's going on?
ssh -vvv [email protected]
OpenSSH_4.5p1, OpenSSL 0.9.7l 28 Sep 2006
debug1: Reading configuration data /etc/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to 10.1.1.100 [10.1.1.100] port 22.
debug1: Connection established.
debug1: identity file /Users/florianneuhauser/.ssh/identity type -1
debug1: identity file /Users/florianneuhauser/.ssh/id_rsa type -1
debug1: identity file /Users/florianneuhauser/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.3
debug1: match: OpenSSH_4.3 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug2: fd 3 setting O_NONBLOCK
debug1: An invalid name was supplied
Cannot determine realm for numeric host address
debug1: An invalid name was supplied
Cannot determine realm for numeric host address
debug1: SSH2MSGKEXINIT sent
debug1: SSH2MSGKEXINIT received
debug2: kexparsekexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie- hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kexparsekexinit: ssh-rsa,ssh-dss
debug2: kexparsekexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes1 92-cbc,aes256-cbc,[email protected],aes128-ctr,aes192-ctr,aes256-ctr
debug2: kexparsekexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes1 92-cbc,aes256-cbc,[email protected],aes128-ctr,aes192-ctr,aes256-ctr
debug2: kexparsekexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[email protected],hmac-sha1-96,hmac- md5-96
debug2: kexparsekexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[email protected],hmac-sha1-96,hmac- md5-96
debug2: kexparsekexinit: none,[email protected],zlib
debug2: kexparsekexinit: none,[email protected],zlib
debug2: kexparsekexinit:
debug2: kexparsekexinit:
debug2: kexparsekexinit: firstkexfollows 0
debug2: kexparsekexinit: reserved 0
debug2: kexparsekexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-g roup1-sha1
debug2: kexparsekexinit: ssh-rsa,ssh-dss
debug2: kexparsekexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes1 92-cbc,aes256-cbc,[email protected],aes128-ctr,aes192-ctr,aes256-ctr
debug2: kexparsekexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes1 92-cbc,aes256-cbc,[email protected],aes128-ctr,aes192-ctr,aes256-ctr
debug2: kexparsekexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[email protected],hmac-sha1-96,hmac- md5-96
debug2: kexparsekexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[email protected],hmac-sha1-96,hmac- md5-96
debug2: kexparsekexinit: none,[email protected]
debug2: kexparsekexinit: none,[email protected]
debug2: kexparsekexinit:
debug2: kexparsekexinit:
debug2: kexparsekexinit: firstkexfollows 0
debug2: kexparsekexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2MSG_KEX_DH_GEXREQUEST(1024<1024<8192) sent
debug1: expecting SSH2MSG_KEX_DH_GEXGROUP
debug2: dhgenkey: priv key bits set: 114/256
debug2: bits set: 514/1024
debug1: SSH2MSG_KEX_DH_GEXINIT sent
debug1: expecting SSH2MSG_KEX_DH_GEXREPLY
debug3: checkhost_inhostfile: filename /Users/florianneuhauser/.ssh/known_hosts
debug3: checkhost_inhostfile: match line 2
debug1: Host '10.1.1.100' is known and matches the RSA host key.
debug1: Found key in /Users/florianneuhauser/.ssh/known_hosts:2
debug2: bits set: 505/1024
debug1: sshrsaverify: signature correct
debug2: kexderivekeys
debug2: set_newkeys: mode 1
debug1: SSH2MSGNEWKEYS sent
debug1: expecting SSH2MSGNEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2MSGNEWKEYS received
debug1: SSH2MSG_SERVICEREQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2MSG_SERVICEACCEPT received
debug2: key: /Users/florianneuhauser/.ssh/identity (0x0)
debug2: key: /Users/florianneuhauser/.ssh/id_rsa (0x0)
debug2: key: /Users/florianneuhauser/.ssh/id_dsa (0x0)
debug1: Authentications that can continue: publickey,gssapi-with-mic,password
debug3: start over, passed a different list publickey,gssapi-with-mic,password
debug3: preferred gssapi-keyex,gssapi-with-mic,publickey,keyboard-interactive,password
debug3: authmethod_lookup gssapi-with-mic
debug3: remaining preferred: publickey,keyboard-interactive,password
debug3: authmethodisenabled gssapi-with-mic
debug1: Next authentication method: gssapi-with-mic
debug1: An invalid name was supplied
Cannot determine realm for numeric host address
debug1: An invalid name was supplied
Cannot determine realm for numeric host address
debug2: we did not send a packet, disable method
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethodisenabled publickey
debug1: Next authentication method: publickey
debug1: Trying private key: /Users/florianneuhauser/.ssh/identity
debug3: no such identity: /Users/florianneuhauser/.ssh/identity
debug1: Trying private key: /Users/florianneuhauser/.ssh/id_rsa
debug3: no such identity: /Users/florianneuhauser/.ssh/id_rsa
debug1: Trying private key: /Users/florianneuhauser/.ssh/id_dsa
debug3: no such identity: /Users/florianneuhauser/.ssh/id_dsa
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred: ,password
debug3: authmethodisenabled password
debug1: Next authentication method: passwordI just had a problem with this myself. My ssh was working fine for years till a week or two ago, then I couldn't connect to anything. Here's what fixed it for me.
You need to edit (create if necessary) ~/.ssh/config on the machine you're connecting from and add the line
GSSAPIKeyExchange no
Your post said you tried that on the server side, I had to use it on the client side & it appears to work. You can test it first by using the -o switch at the command line, e.g.
ssh -x -o GSSAPIKeyExchange=no 192.x.x.x
Hope that helps. -
Ssh complains always about missing ~/.ssh/id_*
Since some days, mabye the last openssh update, ssh complains during building up an connection. The connection itselfs works:
ssh -l username hostname
no such identity: /home/me/.ssh/id_rsa: No such file or directory
no such identity: /home/me/.ssh/id_dsa: No such file or directory
no such identity: /home/me/.ssh/id_ecdsa: No such file or directory
I don't use any ssh-keys on this machine! Anyone other affected?Thanks.
I'm the client so "sshd_config" is the wrong place. Their is no sshd-service running on my client.
https://bbs.archlinux.org/viewtopic.php?pid=1253044
# I've found that thread. But this looked awkward to me, because the solution was "creating keys" and I don't use keys.
https://bugs.archlinux.org/task/34490
# Did't found, because it is closed. My fail, will look next time also for already closed bugs!
From the bugreport I take the information, that I'm not alone. I wonder that there are not much more complains around everywhere. Everyone who doesn't have stored private keys in his/her .ssh-directory should be affected.
// edit
Upstream bug-report:
https://bugzilla.mindrot.org/show_bug.cgi?id=2084
Last edited by hoschi (2013-04-04 14:20:16) -
Hi,
I've a cisco 2911, IOS software, c2900 software (c2900-Universalk9-M), Version 15.1(4)M4,RELEASE Software (fc1)
How to update ssh v2 on ssh v3?Hello @nzhanaev01,
SSH 3.0 is just a client version, till now the official protocols are SSHv1 and SSHv2. Refer to the below link.
- http://www.vandyke.com/products/vshell/faq/015.html
Also for further information about SSH you can consult into the RFC4253
- https://tools.ietf.org/html/rfc4253 -
Security update breaks kerberos
I use kerberos as a Fermilab user to connect by ssh. Since installing the security update today, it no longer works. Any ideas?
Turns out Fermilab uses and old version of ssh, so to
be compatible and allow kerberos you have to use the
pre update ssh (3.8) instead of 4.2, this is a kluge
but waiting for Fermilab to upgrade to 4.2 is not
much of an option either
I had the same suspect, now I've found someone else with the same problem here at Fermi. But I wasn't sure and I spent about 4 hours trying to troubleshoot ssh, lurking mailing list and forums and finally reading your message
Thanks for the hint, I'm going to downgrade ssh.
Renzo -
Hello Guys,
Over the past few hours I have been posting related questions and I have gotten a little closer to updating my server/host.
I have gone to the ESX Server 3i updates (Embedded and Installer) and I have noticed that the first build for ESX 3i is 207095. Which means that I have not done any updates since the installation. CORRECT!
Now... I have been using "ESX Server 3 Patch Management guide, which instructs us to use esxupdate, but it appears that some of the command in that document is not supported on my host.
This post: vihostupdate35 | VMware vSphere Blog - VMware Blogs ..... Tells me that I will have to use "vihostupdate35" from a remote CLI which I installed but cannot see how to connect to the server as I cannot find any document that shows the syntax etc.
At this point I am confused and frustrated and just need a little more guidance from someone who could point me to a document or copy and past the procedures I need to use to get this update done.
I have downloaded this file to do the UPDATE: "ESXe350-201302401-O-SG.zip" and I have extracted it on the host on a Datastore and copied it to my "/Tmp/ESXi350" folder.
I have also extracted it there as well just in case I need to browse to the extracted folder, and run any command.
Can anyone out there help me with the correct SYNTAX and METHOD to get this update installed?
I can connect with SSH from a windows machine using puTTy.exe as well as I have VSphere CLI installed on another Windows PC and can browse to the "C:\Program Files (x86)\VMware\VMware vSphere CLI\bin" folder to run "vihostupdate35.pl" I can see it in the folder with a "dir" command:
12/11/2014 03:50 PM 0 esxcli.exe.log
08/13/2014 08:55 AM 1,898,106 esxcli.zip
08/13/2014 08:55 AM 12,300 EULA
08/13/2014 08:55 AM 63,778 EULA.rtf
08/13/2014 08:55 AM 207,212 open_source_licenses.txt
08/13/2014 08:55 AM 2,131,968 python26.dll
08/13/2014 08:55 AM 31,348 svmotion.pl
08/13/2014 08:55 AM 82 vcli.bat
08/13/2014 08:55 AM 9,994 vicfg-advcfg.pl
08/13/2014 08:55 AM 12,080 vicfg-authconfig.pl
08/13/2014 08:55 AM 9,196 vicfg-cfgbackup.pl
08/13/2014 08:55 AM 9,456 vicfg-dns.pl
08/13/2014 08:55 AM 13,032 vicfg-dumppart.pl
08/13/2014 08:55 AM 17,081 vicfg-hostops.pl
08/13/2014 08:55 AM 27,513 vicfg-ipsec.pl
08/13/2014 08:55 AM 78,858 vicfg-iscsi.pl
08/13/2014 08:55 AM 7,129 vicfg-module.pl
08/13/2014 08:55 AM 20,277 vicfg-mpath.pl
08/13/2014 08:55 AM 18,477 vicfg-mpath35.pl
08/13/2014 08:55 AM 8,606 vicfg-nas.pl
08/13/2014 08:55 AM 9,696 vicfg-nics.pl
08/13/2014 08:55 AM 7,425 vicfg-ntp.pl
08/13/2014 08:55 AM 2,989 vicfg-rescan.pl
08/13/2014 08:55 AM 13,808 vicfg-route.pl
08/13/2014 08:55 AM 22,439 vicfg-scsidevs.pl
08/13/2014 08:55 AM 12,716 vicfg-snmp.pl
08/13/2014 08:55 AM 5,731 vicfg-syslog.pl
08/13/2014 08:55 AM 37,949 vicfg-user.pl
08/13/2014 08:55 AM 27,369 vicfg-vmknic.pl
08/13/2014 08:55 AM 13,313 vicfg-volume.pl
08/13/2014 08:55 AM 37,164 vicfg-vswitch.pl
08/13/2014 08:55 AM 17,712 vifs.pl
08/13/2014 08:55 AM 24,230 vihostupdate.pl
08/13/2014 08:55 AM 13,787 vihostupdate35.pl
08/13/2014 08:55 AM 41,721 vmkfstools.pl
08/13/2014 08:55 AM 60,794 vmware-cmd.pl
08/13/2014 08:55 AM 49,664 w9xpopen.exe
56 File(s) 5,317,017 bytes
2 Dir(s) 34,432,933,888 bytes free
...So how do I complete this?
(So Close!)Thanks A.P.!
Your post led me to the answer here:
VMware KB: ESXi Server 3.5 June 2011 Rollup CD image
I missed an update and for that reason I have to do a clean install as stated at the link above.
My version cannot do any upgrade or update anymore!
*** What you need to know about the Secure Key Update ***
ESXi Server 3.5 June 2011 Rollup CD image (2000593)
This Installable CD contains ESX Secure Key Update ESXe350-201012401-I-BG.
For more information on this patch, see Critical Impact: VMware ESXi 3.5, Patch ESXe350-201012401-I-BG: Apply this patch to continue applying patches on ESXi 3.5 hosts after June 2011 (1030002).
NOTE: If you have not applied this patch by June 1, 2011, you will not be able to apply any patches from then on. To get your hosts updated with ESX Server 3i version 3.5 is to apply this Installable CD as fresh install. Alternatively, upgrade to ESXi 4.0 Update 1 Installable.
Thanks for your suggestions ... at least it led me to the answer.
One clean install coming up! -
Why won't SSH/SFTP work after the 10.6.8 update?
I've tried just about eveything I can think of and have been googling information for awhile now but I figure I just ask the community!
I just recently updated to 10.6.8 and now I cannot remotely log into our Linux machine running RedHat. Strange because my computer is the only one that seems to have a problem with this and it was working just fine before the update. Sometimes I'll get a "Connection Refused" error msg and other times I'll get a "Connection Timeout" error msg. I typically use the NoMachine NX client to log in, but even the ssh commands from the X11 or Mac terminal give me the same error messages. Anyone have any idea what's going on? Any help is appreciated, thanks!!Bloblo63 wrote:
Unfortunately... the MBP shut down after some minute... also in safe mode !!!! The problem is not solved !
Next step, boot in safe mode again and log in do this first:
On the menu bar go to the "Go" option menu.
Then go to utilities.
Open disk utility
Click on your Mac OS X Partition (Macintosh HD in most cases)
Click "Verify Disk"
If the results say "Macintosh HD appears to be OK", run it a second time just to make sure.
If the volume structure is OK then click the "Repair Permissions" button.
Shut down and reboot normally.
If repairing permissions does not work, you'll have to try and install the combo update. But before we go through that run the steps I suggested above. I would suggest however to download the 10.6.8 combo update to a usb stick in case we have to reinstall it.
Good Luck! -
Updating the system has broken ssh-agent
Hi everyone, I recently encountered a strange problem with ssh-agent. For a very long I started it with a simple
ssh-agent
and everything was fine - I could add a key from a different console and everything was immediately visible in all the applications that needed SSH key authentication. However, after the last updates I noticed that simple ssh-agent no longer works - the environment variables are not exported to the system. I know I can use eval `ssh-agent`, but:
- Once I close the console, I cannot use the ssh-agent process anymore.
- The agent is not visible from a different console.
- The agent is not visible from NetBeans or something similar.
I noticed the problem for the first time in December, after switching to Arch x86_64, but I managed to get the old call working somehow. Unfortunately, I have no idea, how I did that . Now I've updated Arch x86 both on laptop and on a desktop and the problem appeared again on both of them. I found several resources about ssh-agent via Google, but nothing concerns my problem directly. Has anyone encountered a similar problem, too and knows, what is wrong with the new Arch SSH packages or how to fix it? I would appreciate any help, because SSH is critical for me and now it doesn't work correctly on any of my computers.I'm not sure how to directly answer your question, but here's the portion of my .bashrc I use to start the ssh agent on login. Hope it helps! I'm also running x86_64.
SSH_ENV="$HOME/.ssh/environment"
function start_agent {
echo "Initialising new SSH agent..."
/usr/bin/ssh-agent | sed 's/^echo/#echo/' > "${SSH_ENV}"
echo succeeded
chmod 600 "${SSH_ENV}"
. "${SSH_ENV}" > /dev/null
/usr/bin/ssh-add;
# Source SSH settings, if applicable
if [ -f "${SSH_ENV}" ]; then
. "${SSH_ENV}" > /dev/null
ps -ef | grep ${SSH_AGENT_PID} | grep ssh-agent$ > /dev/null || {
start_agent;
else
start_agent;
fi
Good luck!
Scott -
Firewall blocks ssh since Sept 12 update
I have a Mac Pro Early 2008 running Lion 10.7.1 (11826). Since the "Security Update 2011-005" yesterday morning (Sept 12), the firewall does not allow incoming ssh connections, even though "remote login" is enabled in the "Sharing" preferences pane, and the firewall config page under "Security & Privacy" shows that "Remote Login (SSH)" is set to "Allow incoming connections". I do this all the time, and the behavior definitely changed with yesterday's update.
To be clear, with the firewall turned off, I am able to ssh into the machine from another machine on the local network. When I turn the firewall on, despite the options set as described above, I am unable to make an ssh connection. This worked before yesterday's update. I think that Apple broke something with the update.Okay, I just found out you have to query anchor rules with a special switch (-a).
I just found out there is no entry for SSH which should read something like
"pass in on inet proto tcp from any to any port ssh keep state"
euler:~ dr$ sudo pfctl -a "com.apple/100.InternetSharing" -vvvsr
No ALTQ support in kernel
ALTQ related functions disabled
euler:~ dr$ sudo pfctl -a "com.apple/250.ApplicationFirewall" -vvvsr
No ALTQ support in kernel
ALTQ related functions disabled
@0 block drop in inet proto icmp all icmp-type echoreq
[ Evaluations: 306 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 33285 ]
@1 block drop in inet6 proto ipv6-icmp all icmp6-type echoreq
[ Evaluations: 228 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 33285 ] -
After Security Update today: "Bus error" when starting "ssh" client
Hi,
I'm using OS X 10.5.2 and updated my system with the newest Safari 3.1 and Security Update a few hours ago. After I did this update, I cant use the command-line ssh client anymore. When I start the ssh, I immediately get a "Bus error" on the shell.
Any suggestions?
Thanks, MarcDisk Utility Permission Repair doesn't do any good either.
I now actually use my Parallels VM to ssh thanks to putty but still...
This is what Crash Reporter has to say:
The application ssh quit unexpectedly.
Process: ssh [323]
Path: /usr/bin/ssh
Identifier: ssh
Version: ??? (???)
Code Type: X86 (Native)
Parent Process: bash [189]
Date/Time: 2008-03-18 23:04:56.717 +0100
OS Version: Mac OS X 10.5.2 (9C31)
Report Version: 6
Exception Type: EXCBADACCESS (SIGBUS)
Exception Codes: KERNPROTECTIONFAILURE at 0x0000000000001014
Crashed Thread: 0
Thread 0 Crashed:
0 ??? 0x0004c4e7 0 + 312551
1 ??? 0x0004c56e 0 + 312686
2 ??? 0x0004c7f7 0 + 313335
3 ??? 0x0004b070 0 + 307312
Thread 0 crashed with X86 Thread State (32-bit):
eax: 0x00001000 ebx: 0x0004c7d5 ecx: 0x0004e338 edx: 0x0004e340
edi: 0x0000101c esi: 0x00000000 ebp: 0xbffffa18 esp: 0xbffff9f0
ss: 0x0000001f efl: 0x00010286 eip: 0x0004c4e7 cs: 0x00000017
ds: 0x0000001f es: 0x0000001f fs: 0x00000000 gs: 0x00000037
cr2: 0x00001014
Binary Images:
0x363d8000 - 0x36415fef +ssh ??? (???) <38f6d3ec24f0b372e64c12b15bb319d4> /usr/bin/ssh
0x8fe00000 - 0x8fe2da53 dyld 96.2 (???) <7af47d3b00b2268947563c7fa8c59a07> /usr/lib/dyld
0x90125000 - 0x90129fff libmathCommon.A.dylib ??? (???) /usr/lib/system/libmathCommon.A.dylib
0x90841000 - 0x909a0ff3 libSystem.B.dylib ??? (???) <4899376234e55593b22fc370935f8cdf> /usr/lib/libSystem.B.dylib
0x9316d000 - 0x9317bffd libz.1.dylib ??? (???) <5ddd8539ae2ebfd8e7cc1c57525385c7> /usr/lib/libz.1.dylib
0x9317c000 - 0x931a7fe7 libauto.dylib ??? (???) <42d8422dc23a18071869fdf7b5d8fab5> /usr/lib/libauto.dylib
0x931a9000 - 0x93206ffb libstdc++.6.dylib ??? (???) <04b812dcec670daa8b7d2852ab14be60> /usr/lib/libstdc++.6.dylib
0x936a2000 - 0x937d4fef com.apple.CoreFoundation 6.5.1 (476.10) <d5bed2688a5eea11a6dc3a3c5c17030e> /System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
0x93adf000 - 0x93b91ffb libcrypto.0.9.7.dylib ??? (???) <330b0e48e67faffc8c22dfc069ca7a47> /usr/lib/libcrypto.0.9.7.dylib
0x93be1000 - 0x93cc0fff libobjc.A.dylib ??? (???) <a53206274b6c2d42691f677863f379ae> /usr/lib/libobjc.A.dylib
0x93d20000 - 0x93e58ff7 libicucore.A.dylib ??? (???) <afcea652ff2ec36885b2c81c57d06d4c> /usr/lib/libicucore.A.dylib
0x93fbc000 - 0x93fdafff libresolv.9.dylib ??? (???) <0629b6dcd71f4aac6a891cbe26253e85> /usr/lib/libresolv.9.dylib
0x94c9c000 - 0x94d4cfff edu.mit.Kerberos 6.0.12 (6.0.12) <3dd13466876a8fe4549cfc1354233ec3> /System/Library/Frameworks/Kerberos.framework/Versions/A/Kerberos
0x94d4d000 - 0x94d54ffe libbsm.dylib ??? (???) <d25c63378a5029648ffd4b4669be31bf> /usr/lib/libbsm.dylib
0x95ca0000 - 0x95e6bff7 com.apple.security 5.0.2 (33001) <0788969ffe7961153219be10786da436> /System/Library/Frameworks/Security.framework/Versions/A/Security
0x966d7000 - 0x966defe9 libgcc_s.1.dylib ??? (???) <f53c808e87d1184c0f9df63aef53ce0b> /usr/lib/libgcc_s.1.dylib
0xfffe8000 - 0xfffebfff libobjc.A.dylib ??? (???) /usr/lib/libobjc.A.dylib
0xffff0000 - 0xffff1780 libSystem.B.dylib ??? (???) /usr/lib/libSystem.B.dylib -
Lenovo Iomega EZ Media & Backup Center ssh acces or twonky update
Hello,
I have a problem with playing video files with twonky server pre instaled on Iomega EZM. Video files are played correctly but no subtitles are visible. I installed the same server on ma PC and found out that ther reason is not correct tv profile for LG TV. There are two available LG DLNA Player and LG DLNA DMR and both are not working. Proper file should look like this:
name: LG DLNA custom
content:
<Client>
<DeviceId>
<!-- Originally added for LG BP620 -->
<DisplayName>LG TV 3</DisplayName>
<HttpRecognition>
<HttpText>LGE_DLNA_SDK</HttpText>
<HttpText>LG_UA</HttpText>
</HttpRecognition>
<DeviceDescriptionRecognition>
<DescriptionText><manufacturer>LG Electronics</manufacturer></DescriptionText>
</DeviceDescriptionRecognition>
<MappingUpdatePolicy>FIX</MappingUpdatePolicy>
</DeviceId>
<Adaptations>
<DLNA>
<Version>DLNA15</Version>
</DLNA>
<MimeTranslations>
<MimeTypeMapping>
<In>application/x-srt</In>
<Out>text/srt</Out>
</MimeTypeMapping>
</MimeTranslations>
</Adaptations>
<DeviceQuirks>
<Quirk>STOP_WORKAROUND</Quirk>
</DeviceQuirks>
</Client>
Now I would like to update Twonky server with this file, but form manage center ther is no way, and twonky configuration site also not allows any actions of this kind.
So i think that best way would be to acces system patition by SSH and add this file. How can I do it?
SSH is active but i can't login as root - don't know pass, and any typical combination of root, admin, administrator etc doesn't work
I think it would solve problem for many users.
Please help
Solved!
Go to Solution.You log into SSH with your administrator username, and the password has "soho" appended at the beginning. So, if the admin password is "1234", then
e.g., username: admin password: soho1234
** Disclaimer ** use at your own risk ! If you are not familiar with Linux admin, you might not want to mess around. -
Remote Desktop 3.3 update breaks SSH connectivity
Since updating to Remote Desktop Admin 3.3, I am no longer able to use ARD over a SSH tunnel.
This is a serious bug - especially since there is no easy way to rollback to the previous version.
I would strongly recommend against running this update if you ever need to work in this way.This is since the screen sharing port was set to 5900 in the update. Changed it to my desired port and all is well!
-
SSH changes vs future firmware update
Hullo, I have made some changes to WD My Cloud via SHH: I disabled ipv6;I stopped two services through crontab (S85wdmcserverd and S86wdphotodbmergerd)etc, according to http://blog.cloud-client.info/?p=1365 In case of future firmware update and I perform the installation will the changes done be overwritten?Would be advisable to accept the update in the future? Thank you in advance.
Indeed, an answer from a user that has experienced the aggravation of firmware updating and vowed never again will he update; unless he has two clouds (one to update and the other to keep as backup). yes... once you update your firmware, all changes will be lost and if you had store script files in the /usr/local/sbin directory, they will be gone too... In a sense it is a good thing because if you had done a lot a changes, this reverts your device back to original factory state. Now I have heard rumors that if you by pass too many firmware updates and decided to upgrade from, lets say 3.04 (which happens to coincide with my current version) to the latest firmware 4.xxx which is probably 6 update versions ago, your device will be bricked. They say, the customers that runs and replies in this forum, that you will need to upgrade your firmware one by one until you reach the latest version. The other rumor is that many have updated their firmware to the latest version to find that nothing works, speed is slower, usb connections don't connect and of course drop outs are more frequent. Then there are those who says "I've upgraded and everything is fine", but that particular user probably has 5MB of data on his drive. Now here is what I suggest. 1. Always have another copy of your data which has nothing to do with firmware updates. Never ever copy your data to the Cloud device and erase the original unless you have another copy somewhere else. If you don't have another device and don't wish to buy another device, either leave the original on your original drive and use the Cloud as your backup, or subscribe to one of the free or paid online storage to keep a backup copy, but don't rely on the online storage as your only copy either, since places like Megaupload may disappear overnight and your only copy may be in the hands of the FBI.2. if you upgrade your firmware, it is better to have another Cloud for a 3rd backup. That way if something fails (and it would feel like it expecially when it goes white light on you), you have another device to use while the other one is being RMAed.3. If you have stopped the scans from occuring, the first thing that happens after an update is a flurry of activity from your Cloud trying to catch up on its scans and you might get locked out. So be prepared to SSH into it as soon as it lets you which is way way after the white light stays on for several hours (speaking from experience). 4. Once you SSH in, be prepare to repeat the fixes that you applied to your last version. For four years (or more), I haven't seen a switch to turn off the media scans although in version 3.04, they actually turned off the scans automatically dues to processor overload and it had a message on the UI telling me that the scans has been stopped and in order to restart the scans you must reboot (I didn't reboot for 6 months). You can skip firmware upgrades as I have without too much problems. Although they have fixed a couple of potential security threats, none of them should potentially affect you since you are behind a router. Although eventually I expect that I will have to upgrade my firmware simply for the reason that the matching iphone app will require the latest version. Perhaps on that day, I will sell my Cloud and move on to a more robust NAS. Good luck.. edit: the/bin/sh /etc/rc2.d/S86wdphotodbmergerd stop /bin/sh /etc/rc2.d/S85wdmcserverd stop are not permanent changes. If you reboot the Cloud, those two process will restart. The update-rc.d commands will disable the processes until you upgrade the firmware.
Maybe you are looking for
-
Since Design View has been removed from Fluid Grid Layouts, and could be removed completely in next upgrade, I cannot use Live View to place complex text into my web pages. Our business requires the listing of complex job descriptions on our web page
-
Hi! Have looked for a solution to my problem without clear success. I have an SL500 (Model & Type: 27464RM) which I upgraded from Vista Business to a purchased copy of Windows 7 Home Premium (upgrade). Due to the significantly slow performance using
-
Function Module to get languages maintained in paticular box
Hi , I want to know the languages that are maintained in a box. (that we can check in the SE38 target language). is there any tables where it is maintained. (T002 does not store it). Regards,
-
How to add a title to button in flash?
Hi, I have a button in flash and a action layer with the following script: button1.addEventListener(MouseEvent.CLICK,clickHandler); function clickHandler(event:MouseEvent):void{ navigateToURL(new URLRequest("http://mortimerhall.99k.org/homepage.htm")
-
Makes a hash converting to .doc or .rtf
what's the point in exporting to .doc or .rtf if there is no fidelity to buzzword original?