I'm running a server where I have my SSH key set up with the root user so I can log in without the password.
I also have an account called "jmaskell" that I use for everything, and I'm trying to add my SSH key to this. I've done exactly what I did for the root user and have my key in the .ssh/authorized_keys2 file. Unfortunately I'm still prompted for my password everytime I log in.
Is it possible to have the same SSH key stored for two different users?
We've been having some trouble logging into our Intranet here at work. Essentially it is set up to use Integrated Windows authentication but for some reason that was disabled last week and so no-one could log in. That was easy enough to fix and everything seemed to be back to normal.
However, I installed ModX CMS into a subfolder but when it comes to logging in to the admin backend I am repeatedly asked for my Windows ID and ultimately told I am not authorised to view the page. I can see the login page and I can enter the ModX admin details but it won't let me further than that.
The strange thing is a colleague with the same (admin) rights can log in no problem!
I am using WinXP Pro and IIS 5.1. When I try to access an asp file using IE 7 using a URL like [url], it always brings up the login dialog, and nothing I enter in it works. So, automatic authentication is failing. I verified that the Directory Security settings are correct.
I have a machine at home running the UniformServer wamp package on Win2K3 Standard server and I'm hosting a simple family picture gallery using Gallery 2.3. I put the gallery in a subdirectory of root so I could have a public homepage and a gallery that is password protected. I did this using .htaccess and .htpasswd.
My issue is when I browse to mydomain.com and click the link to the gallery [url], the password box pops up, and when I enter the appropriate credentials, the domain name reverts to the IP and another password box pops up. If I log in a second time, I'm fine. If I cancel that second login, it still lets me in, but prompts me to login that second time for every click going forward until I authenticate.
way to centrally login our FTP clients. We currently run ftp1/2/3/4.[url]and would like to have simply [url]which would authenticate the user and push the user to the relevant server.
This would hopefully work in the same way as a Radius Proxy.
I have problem to set Email authentication in Cpanel. when I send Email via Microsoft outlook, it is possible to send mail without SMTP authentication.
I want to remove my authentication popup which is getting when login through webmail like (www.mydomain.com/webmail) and you can see in an attachment .
The users will connect by wireless signal and I want anybody in the neighborhood to be able to access it, free of charge.
Only issue is I want they to register and login before they can start visiting websites. To avoid liability issues I think identifying each user is a good idea.
So I want to create a login mechanism, like the user connects to the wireless network. Then he tries to open any website but it will actually open the authentication page instead.
My first obstacle is how to redirect every web request of non-authenticated users to my web server? Should I do it in the DNS level pointing every domain to my internal IP or should I do it in IP level somehow?
I have seen other ISPs using this authentication method, but unfortunately I didn't bother looking at how they accomplished it...
I think they used the DNS method. But how to setup a dns daemon (be it bind, djbdns or even maradns) to resolve all requests to a certain IP?
I'm doing a project for my school ( a small technical college) and we're trying to come up with some sort of wireless authentication gateway. This doesn't need to be locked down and super secure, this is a state run school with an open wifi network. Basically we want all wireless users to be forced to view a splash page/AUP and agree to it before being able to access the web.
couple issues: -Super low budget, so enterprise solutions are pretty much out of the question -must be as transparent as possible to the use: no MAC registering with the IT dept. no added software, no RADIUS certs etc. -we have limited access to the actual router and all administration but be done by the upstream provider(including inter-vlan routing)
I've looked at NoCAT and really like it but because of the existing network topology its going to be hard to force all traffic through a central box for filtering/auth
What I'm wondering is if there is a way to do selective DNS poisoning to redirect all lookups to a web authentication server(similar to nocat's system). After a host is authenticated their DNS would resolve correctly. I know someone could just go out by IP or potentially use different DNS servers but we really aren't that concerned about it, all they have to do is click 'accept' anyway.
I use Exim + Dovecot for my mail server. We can get mails through pop3 protocol without a problem, but when we try to send mails, exim does not permit relay. My passwords are stored in a mysql database for dovecot. Is it possible for exim to do authentication based on that? If it will be easier, i can create a text file with md5 passwords on it for my users.
my mail server stops authenticating users. When they try to check messages they get the login screen in their mail clients again and again. I have to go to the server and restart saslauth, mysqld and postfix.
I'm getting the following warning when restarting MySQL:
070403 13:53:09 mysqld started 070403 13:53:09 [Warning] Changed limits: max_open_files: 1024 max_connections: 1014 table_cache: 64 070403 13:53:10 InnoDB: Started; log sequence number 0 43654 /usr/libexec/mysqld: ready for connections.
The file my.cnf show the following:
[mysqld] log=/tmp/mysql.log datadir=/var/lib/mysql socket=/var/lib/mysql/mysql.sock # Default to using old password format for compatibility with mysql 3.x # clients (those using the mysqlclient10 compatibility package). old_passwords=1 max_connections=2548
I'm running IIS on a small business server R2. I'm running 2 websites. I local website for client PC's on port 80. And a external website on port 81 with the WAN router forwarding requests from port 80 to port 81. I can access the site fine but it keeps popping up with the login screen and requires authentication to access the site. I have set full permission on the folder and IIS folder for guest and everyone and internet guest. Also I have enable annoymous access.
I been trying to get this file using wget but it uses some sort of advance Authentication that I cant get around using wget it doesnt use cookies it uses some Authentication method.
How can I login to that website using wget? the form field names are usernamlc and passlc if I can some how post those two usign wget I can get the download link.
I have been trying to set ssl client authentication with Apache.I basically have a server certificate issued by a recognized CA. For the normal ssl authentication I use the following configuration (and it works fine):
I have a couple of directories on my server that require authentication (MySQL DBD and AuthUserFile). Both work fine with SSL off. When I use SSL on directories without authentication that also works fine. However, when I put the 2 together, authentication is by-passed. I cannot seem to get the configuration right to do both. Here is my VH conf file (sanitized):
I'd appreciate if you can point out some links, or if anyone is willing to help me for a fee, we can talk about it.
I have a web application called MyApp
- Each MyApp user has 5gb hosting, and a web interface to manage their files.
- Therefore MyApp user gets a user account on linux machine and has access to only one directory /repo/usr/<user_id> and nowhere else. (suexec?)
- If that MyApp user creates a subdomain from any folder inside his home folder (he can do that using web interface), that folder is readable by www-data user not writable.
- That myapp user is able to mount/unmount his own ftp drives using curlftpfs.
- In short, users can only mess with their own files and they have no access nor rights to any other file that is outside of their home dir.
In short, this is a kind of hosting company server setup. Right now, we will have to manage all this from -only- one powerful server.
Apache Suexec, so that each VHosts runs under there own username FTP for each of the vhosts.
I have made a username aplushost and FTP works fine when i login, however when i try and get Suexec to work it shows a 403 permision dined, even know the whole directroy path is with correct permsions.
"/home/aplushost/www"
However if i chown the directroy "aplushost" to apaches username , currently "nobody" i have tried with "apache" and many others the page is displayed correctly.
The weird thing is that the www directroy can still be set to the aplushost username and files work inside.
However due to changing the privalages of the folder aplushost ftp now fails to login due to the folder not being owned by the ftp user "aplushost".
So im stuck between only having one item working at a time.
i have put some content of my config files.
----------httpd.conf vhosts------------------ <VirtualHost 87.117.196.247> DocumentRoot "/home/aplushost/www" ServerName aplushost.co.uk SuexecUserGroup aplushost aplushost <Directory "/home/aplushost/www"> allow from all Options +Indexes </Directory> </VirtualHost>
If a User logs in with username only, all works correct. If a user use the DomainUsername format, the login is rejected with "user not found".Should it not work with both login styles ? Or is there a option to reformat or rewrite the username before authentication without the "Domain part ?
I was wondering if there's a simple way to implement some kind of authencation bruteforce protection in apache for windows? Right now my authentication never stops asking if user inputs the wrong credentials, this makes me think i'm vounrable for bruteforce attacks which could eventually get through if given the time.
I trying to create authentication Key in SSH with plesk 11.5.30 CentOS Linux box...I followed the following KB article to create authentication key. URL...The authentication key not working.
The domain is very new, and only known to me. it has http authetnication setup so you'd have to know the username and password to login to access the site.
[Sun Oct 25 17:37:38 2009] [crit] [client 88.191.76.63] configuration error: couldn't perform authentication. AuthType not set!: /phpmyadmin/scripts/setup.php [Sun Oct 25 18:57:47 2009] [error] [client 96.9.152.120] client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /w00tw00t.at.ISC.SANS.DFind:)
With my sshd installation, I have password authentication disabled, and only accept key-based auth. What I want to do is, make sshd lie about it's accepted authentication methods, or even make up a few to confuse anyone who's trying to connect. For example,
I have a customer that wants to send emails using Exim and SMTP (using outlook), withouth authentication. Now.. the big question is ... how can I configure the Exim server to work withouth any authentication?
I know the risks of this withouth any authentication, but is my customer's server and he want to work in this way.
He is also asking if he is able to send emails withouth authentication using SMTP for certain IP addresses.. is that possible? Can be done for only 1 domain, or for the entire server?
I have to create a structure in which there is a client, a server and an authentication authority.
The authentication authority verifies the identity of both the client and server before they can communicate, so that the client can access the content offered by the server. Everything must be made using HTTP with SSL (HTTPS).
For now I have installed xampp on my pc with ubuntu, I performed the initial configuration and was able to view a test page locally hosted by entering the URL of the virtual server "www.server.it" (added to the configuration of apache2).