openssh

Hello all, With Git, you basically have 3 choices for a server: Git protocol (similar to svnserve but with no authentication or encryption) HTTP(s)/CGI/smart/dumb/webdav SSH Personally I am not entirely happy with any of them (Git protocol has no authentication, HTTP(s) needs central...

Hi, I am new to this forum. In FreeBSD 12.3 Jail, I can easily to activate SSH server my the following command: sysrc sshd_enable=YES && \ service sshd start After that, I import my public key to user and I can use SSH / SFTP to connect to the Jail. However, in FreeBSD 12.4, my steps can only...

Hello. I installed FreeBSD 13.1 on a Supermicro X8DT3 and also on an AMD desktop machine. I installed OpenSSH server on the X8DT3. Now when I try to connect to it by LAN using: # ssh -vvv -p 2222 user@192.168.0.104 Everything works. But then after some time it gets disconnected and then I...

13.0-RELEASE-p6 I am dealing with a pci audit and the reason given for a failure is this: CVSS Base Score:4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P CVSS Temporal Score:3.4 E:POC/RL:OF/RC:C Severity:3 QID:38773 Category:General remote services CVE ID:CVE-2019-16905 Vendor Reference:OpenSSH 8.1 Bugtraq...

Hello, I am trying to generate a fido2 ed25519 ssh keys with the libfido2 and openssh-portable. My Yubikey is recognised, but when i try to do the ssh-keygen i run into the following issue: root@builder:~ # pkg info | grep libfido2 libfido2-1.5.0 Provides library functionality...

If I configure an SFTP-only user, that will connect via SFTP and public key to a jailed (chroot'ed) directory, then the user is denied access. I see the following error in the log. # tail /var/log/auth.log Mar 24 23:40:05 wopr sshd[11628]: user joshua login class [preauth] Mar 24 23:40:05 wopr...

Greetings, First of all, forgive me if I'm not in the right FreeBSD forum. Feel free to redirect me to the proper channel. I have this vulnerability on one of my production web servers which is failing a PCI compliance test. I've been searching and reading but haven't found a solution yet. I'm...

According to our third-party PCI scanner (conducted by Trustwave) current OpenSSH version is no longer supported. The version of OpenSSH detected is no longer supported by the vendor. No further security patches or upgrades will be released by the vendor for this version, and the vendor will...