The authentication tag has no wiki summary.
3
votes
1answer
20 views
how do I configure my RHEL5 or RHEL6 system to use ldap for authentication?
I have root access to a RHEL6 system and I want to use the corporate ldap server where I work for user authentication.
I ran authconfig-tui and checked [*] Use LDAP and left [*] Use Shadow ...
13
votes
1answer
181 views
How do I tell what program is asking for a password?
I'm getting an occasional "Authentication request" dialog from Gnome, and I don't know what program is asking or even which account it's talking about.
[email redacted] is an email address of mine, ...
1
vote
0answers
31 views
Assigning an identity to an IPsec policy in Linux
Page 36 of RFC2367 (PF_KEYv2 Key Management API) states that when the kernel needs an IPsec security association for an outbound packet, but does not have one, it will ask the key management daemon ...
1
vote
2answers
90 views
CentOS use .pac file as proxy
I have to use a proxy with authentication to connect to the Internet. But I can't find any solution for this.
I have modify my yum.conf, with a lot of possibilities:
...
2
votes
2answers
82 views
ssh login in Bash script
I've been working on a series of scripts to perform tasks on my remote server, but have gotten stuck at how to log in via ssh mid script, as I cannot enter the password automatically. Is there a way ...
0
votes
0answers
50 views
Log in using a 4-digit PIN, with a password fallback
Windows 8 has this feature where you can log in with a 4-digit PIN which is really convenient. Is there such a thing in Linux?
In Windows 8, you get five attempts to log in using the PIN, then it ...
1
vote
1answer
21 views
Where would I find where an .htaccess file is located and being used on a Mac OS X Lion server that sets Basic Auth on an Apache server?
I've installed some software, namely, a continuous integration (CI) server (Jenkins) on a Mac Mini running Lion Server. The server, by default, runs from port 8080 on local host via the url: ...
0
votes
1answer
34 views
Sendmail relay without authentication
I have an issue:when the email is sent from an address other than 127.0.0.1 the authorization is required even if ip is on the same machine.
How can I avoid to make request authorization for a given ...
0
votes
0answers
43 views
Sendmail authentication
when I try to send email from my new system:
Distributor ID: Scientific Description: Scientific Linux release 6.4 (Carbon) Release: 6.4 Codename: Carbon
with sendmail Version 8.14.4
I have this ...
1
vote
1answer
24 views
kinit returns error salt type 3 unsupported on FreeBSD 9.1-RELEASE install
When attempting to run kinit to log into a Kerberos V5 realm I get the following error on a default install FreeBSD 9.1-RELEASE
kinit: krb5_get_init_creds: salt type 3 not supported
Any ideas?
1
vote
1answer
44 views
SSH Authentication Mechanism
Doing a personal research project and I'm wondering: Why does SSH do its own mechanism negotiation rather than use SASL? At first I thought it might be to ensure confidentiality of the whole session, ...
0
votes
0answers
34 views
Missing configuration in Apache to achive mutual SSL authentcaion
After implementing a Mutual Certificate Authentication with OpenSSL and Apache Web Server on CentOS platform, I tried this scenario (see this diagram):
----------
...
0
votes
0answers
45 views
How to determine the sequence of ordering certificates by browser?
I did a Mutual Certificate Authentication implementation with OpenSSL and Apache Web Server on CentOS platform. To simple explanation see this diagram:
----------
| ...
0
votes
1answer
69 views
Certificate extensions in generating and signing certificartes using openssl
References:
SSL Configurations for Intermediate certificate
How to add my own created certificate authority to system trusted repositories
Why I can't find a page which tell me what's the kind of ...
2
votes
0answers
71 views
SSL Configurations for Intermediate certificate
I had implement a mutual certificate authentication and it worked successfully for following steps :
create root ca (self-signed)
create server certificate and sign it with ca private key
create ...
3
votes
1answer
102 views
Configuring Apache to Require a Client Certificate
I want to implement mutual authentication (two - way ) with apache web server.
References :
1.Failed to sign CSR with the CA root key
2.Firefox error message when adding client certificate ...
3
votes
1answer
174 views
Firefox error message when adding client certificate signed by CA
I'm getting this message when I'm trying to add a certificate to Firefox's "your certificate tab". I generated and signed it before by a server which also is a CA.
Failed to decode the file. ...
0
votes
1answer
48 views
Where to put generated certicate for user [duplicate]
I was following this tutorial and I want to implement mutual authentication between server and client, where server and CA (certificate authority) is the same thing.
I reached the last step and I ...
1
vote
1answer
102 views
Failed to sign CSR with the CA root key
I'm trying to implement Mutual Certificate Authentication , I have to be the CA and server at the same time , generate certificates and sign them for users. and I'm following this tutorial which is a ...
1
vote
1answer
99 views
Configure SSL Mutual (Two-way) Authentication
I was asked to do it "Configure SSL Mutual (Two-way) Authentication" and I don't know where to start or how to test it .
server and many clients . they can access code on server only if they have a ...
13
votes
2answers
795 views
SSH ignores characters after correct password string?
Remote machine 10.10.10.1 has password "asdFGH12" for user named "user". I'm able to log in even if I type in password "asdFGH12dasdkjlkjasdus" or any other characters after the "asdFGH12" string.
$ ...
1
vote
1answer
342 views
Where does Samba 4 store user passwords?
Where does Samba 4 store user passwords? How can I import my password hashes from Samba 3 in Samba 4?
I am using my own LDAP server with samba 3, and the password hash is stored within the ...
2
votes
1answer
144 views
Restrict two way SSH and Apache authentication to non-local networks
I am using Google's open-source PAM module for two-way authentication for SSH logins and certain Apache directives. It works great, however I would like to use this only when trying to log in from an ...
0
votes
1answer
313 views
Unable to login to my server using ssh
Yesterday I was migrating to my new server, needed to use rsync, I created a RSA key, so that rsync could connect, I saw an error that says add to trusted key in location x I didn't have that location ...
2
votes
1answer
2k views
How to configure for an Authenticating Proxy Server
My work proxy server requires authentication with the Microsoft AD domain user credentials. Everybody knows how it works: If you log in on a Windows workstation, your "Internet Explorer" browser based ...
1
vote
5answers
417 views
How to securely automate running commands as root with “sudo su -”?
hint (on client side, how to encrypt files/pwd's):
# encrypt pwd with ssh key:
openssl rsa -in ~/.ssh/id_rsa -outform pem > ~/.ssh/TEMP-id_rsa.pem 2>/dev/null
openssl rsa -in ~/.ssh/id_rsa ...
0
votes
3answers
147 views
What does sudo su work but su does not? [duplicate]
I have tried this on Fedora and on Ubuntu.
kshitiz@kshitiz:~$su
su: Authentication failure
kshitiz@kshitiz:~$sudo su
root@kshitiz:/home/kshitiz#
I am entering the same password in both the cases.
...
0
votes
1answer
206 views
How to authenticate a user with PAM, that is not the user that started the application
I'm currently developing an authentication module for an application. The decision was made to do this by using PAM. I have made this work but it can only authenticate the user that started the ...
4
votes
1answer
4k views
Suddenly, I Can't login with correct password (greeter & tty)
This might be a duplicate of other password related questions but it's somehow eccentric.
I have 3 accounts in my Ubuntu 12.10 system (one standard and two administrators). One of the administrator ...
1
vote
1answer
131 views
Session terminates immediately after authentication
I have a RedHat 5.3 server with several regular users created. Since last Friday the user "xpto" is getting "Authentication failed" error messages.
Tha account isn't locked out.
I have reset the ...
0
votes
1answer
61 views
apt-get update and package authentication
Sometimes when you try to apt-get install a program, you get a warning message about how some packages couldn't be authenticated.
Doing an apt-get update will sometimes fix the problem, but sometimes ...
0
votes
0answers
120 views
Need help configuring Fedora client authentication for 389 server with Kerberos
Trying to setup kerberos authentication with 389-ds and having trouble figuring out how the two fit together.
Here is my setup:
A CentOS 6 VM (centos01) where I setup bind, 389 ds, and kdc services
...
11
votes
3answers
317 views
Groups differ from the local ones when logging in remotely
We store our users in LDAP, alongside some groups that have meaning across different systems (organizational roles including wheel). There are also groups local to workstations, e.g. audio or video ...
1
vote
1answer
63 views
keeping keys on an auxiliary removable drive
It seems that servers are only as secure as the machine that holds the keys and that in turn means the desktop/screensaver password is the line of defence for not only the desktop itself but any ...
1
vote
1answer
611 views
Script to get file from SFTP and run it
We have 5 servers running our code: A, B , C, D and E.
From a local machine, we sftp the file to A. Then
ssh id@A
su - applicationname
sftp id@A
get <file>
bye
tar -xzf <file>
logout
...
4
votes
1answer
118 views
Easiest way to manage users for two machines
I'm administrating two ubuntu desktops and one debian server.
There are abount ~20 active users on the desktops. A few (5-10) user accounts are added each year and about the same amount become ...
1
vote
1answer
143 views
How do I restore authentication for Debian Lenny synaptic package manager?
My neighbor calls me to fix things when his cats walk on his keyboard and cause problems that he can't fix. This time it happened while he was running synaptic package manager.
After the reload, ...
2
votes
3answers
334 views
rsync server/daemon security
I have a NAS (Netgear Readynas NV+) at home and a linux (Arch) box at work that is always on. The linux box is already running an ssh server/daemon and the NAS is already running an rsync ...
3
votes
2answers
168 views
How do you automatically elevate an automatic task to root privileges or is there an alternative approach?
I'm trying to write, in essence, an automatic deployment script for use by our development team and I know I can set up SSH to use keys so that I can automatically authenticate via key instead of ...
3
votes
1answer
295 views
Multiple PCs network centralized system authentication
(I couldn't really choose an accurate title as I don't know exactly what the feature I'm looking for is called. Sorry about that. I hope that the following lines may clear this aspect.)
I own a dozen ...
1
vote
1answer
413 views
SSL handshake failure with Shibboleth
I am using Shibboleth for single user authentication and it needs a ssl configuration which facilitates the user authentication process. Before it was working fine but now I am facing a SSL handshake ...
3
votes
1answer
337 views
Does the SFTP server accept passwords at all?
I'm trying to connect to a sftp server via sftp USERNAME@SERVERNAME. Whatever I do, I get "Permission denied (publickey)." Googling doesn't help as everybody recommends switching to key-based ...
6
votes
4answers
778 views
Is it possible to change password database file(/etc/passwd) in linux?
Is it possible to change password database file(/etc/passwd) to some other file. How does this authentication mechanism work internally ?
Does it depend on pam ?
1
vote
2answers
179 views
Command-line web browser with Kerberos authentication?
QUESTION: Is there a Kerberos-friendly web browser usable via an SSH console?
I have tried links but it does not seem to work with Kerberos (the webapp asks me for login/password even though I have a ...
1
vote
0answers
2k views
SMTP Auth - SASL on Dovecot, Postfix and CentOS 6.2 (and Open-Xchange)
I am trying to get open SASL to work on CentOS 6.2. I followed this tutorial:
http://wiki.centos.org/HowTos/postfix_sasl
I suspect it works perfectly for CentOS 5.x so all I really need is an update ...
1
vote
1answer
833 views
User authentication over Dante proxy server
Below is my Dante SOCKS Proxy server configuration that I connect to without any authentication:
internal: eth0 port = 53200
internal: 127.0.0.1 port = 53200
external: eth0
clientmethod: none
...
1
vote
3answers
6k views
vsftpd fails pam authentication
Moving a tried-and-true vsftpd configuration onto a new server with Fedora 16, I ran into a problem. All seems to go as it should, but user authentication fails. I cannot find any entry in any log ...
5
votes
2answers
7k views
How to telnet via proxy authentication?
I am behind a proxy server in my college. It uses a simple username and password authentication. And i connect to the proxy server to port 3128. now i want to telnet simply to say any website on the ...
5
votes
2answers
571 views
How to check for empty passwords?
Looking at all the ssh-login attempts by script-kiddies I assume that there are messed up systems connected to the internet that have password-less accounts set up.
But how to check a Linux/Unix ...
2
votes
1answer
2k views
Where to supply authentication details to the Network Proxy (Central Proxy) on Fedora?
My system is running Fedora 16 and I live in a campus where we use LAN to connect to the Internet. And for this, we use an http proxy with authentication (username & password).
I tried putting the ...
