Re: [fwd] SSH allows deletion of other users files...

From: Peter Pentchev (roam@orbitel.bg)
Date: 06/08/01

• Next message: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Previous message: Lyndon Nerenberg: "Re: /bin/rmail (was: root & toor)"
• In reply to: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Next in thread: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Reply: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 8 Jun 2001 22:34:00 +0300
From: Peter Pentchev <roam@orbitel.bg>
To: Rob Simmons <rsimmons@wlcg.com>

If you do ssh -v -v -X user@host, and you do this from within an X terminal
(so there is an X session to forward to ;), is there some XAUTHORITY output
at the end?

If not, then:
- Is X installed on the server host?
- Is there a /usr/X11R6/bin/xauth on the server host, executable by your user?
- Are you really sure you're running the client from within an X session? :)

G'luck,
Peter

-- 
You have, of course, just begun reading the sentence that you have just finished reading.
On Fri, Jun 08, 2001 at 03:27:58PM -0400, Rob Simmons wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: RIPEMD160
> 
> With X forwarding on in /etc/ssh/sshd_config:
> X11Forwarding yes
> 
> and using
> ssh -X <user>@<host>
> 
> I don't see any ssh files in /tmp.  Does this bug apply to FreeBSD's
> version of OpenSSH?
> 
> Robert Simmons
> Systems Administrator
> http://www.wlcg.com/
> 
> On Wed, 6 Jun 2001, Neil Blakey-Milner wrote:
> 
> > On Wed 2001-06-06 (12:48), Andreas Haugsnes wrote:
> > > I've tested it with FreeBSD 4.3, and I have not found this bug
> > > to apply.
> > 
> > Are you using X forwarding? (ie, ssh -X)
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Previous message: Lyndon Nerenberg: "Re: /bin/rmail (was: root & toor)"
• In reply to: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Next in thread: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Reply: Rob Simmons: "Re: [fwd] SSH allows deletion of other users files..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [kde-linux] Sessions names ... ssh 192.168.2.80??? ... You can write a wrapper script that would start ssh to some ip and rename the ... konsole session dynamically. ... dcop call to konsole you need to know the pid of konsole. ... (KDE) RE: unexplained pausing/freezing of SSH Terminal Sessions ? ... Do you use expect to initiate your SSH connections? ... i'm having an SSH Terminal Session "issue". ... These machines define an internal/private ... (SSH) SSH connection thru corporate firewall to home sshd on Port 80 ... I have a FreeBSD server running sshd listening on port 80 at home. ... I can successfully establish a ssh session from a Winnt/putty:80 box the ... When I take the same Winnt machine behind a corporate firewall which passes ... (comp.security.ssh) Sun_SSH_1.0 ... I have a problem with Sun's SSH. ... or one SUN_SSH_1.0 session talk to an OpenSSH session. ... This e-mail and any attachments are confidential and may contain legally ... (SunManagers) Re: Is there a way to speed up and resume a SSH X forwarding session from a disconnection? ... there were to be a disconnection, is it possible to resume the SSH X ... Or do I have to make a new session ... you set DISPLAY to that pseudo-display, and all X apps are directed ... impossible to switch X clients from one display to another otherwise. ... (comp.os.linux.x)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint