Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: openssh 4.3p2 and Match keyword

from [Ross Marshall] Network Security [Permanent Link]
Subject: Re: openssh 4.3p2 and Match keyword
Date: Fri, 22 Sep 2006 09:29:39 -0600 
Thanks, I realized this after I had done more digging. I have downloaded
from cvs the 4.4p1 release, the configure went fine, the make finished
with no problems, but make install failed on scard, no rule for install.
I commented out everything in the scard/Makefile under install, and it
then finished and now I have it running. I have been doing this on a
opteron mb running Ubuntu-x86_64. Please forgive me if I seem
particularly dense, but the whole reason for doing this is to deny a
group of users from ssh'ing into the server from the internet, but allow
them to do this from the local net. I was hoping to do the following:
Match Group untrusted
        RequiredAuthentication deny
but I get a:  Directive 'RequiredAuthentication' not allowed within a
Match block.
So how can I do this?

Thanks for your help
Ross
 
On Fri, 2006-22-09 at 09:08 +1000, Darren Tucker wrote:

Ross Marshall wrote:

I have included the following in the config file:
Match Address 192.168.1.10
        AllowTcpForwarding yes
        GatewayPorts no
and when I try to start openssh, I get:
/opt/etc/ssh/sshd_config: line 80: Bad configuration option: Match
/opt/etc/ssh/sshd_config: terminating, 1 bad configuration options
did I miss something when I compiled the server, or am I doing a
mis-configuration?


Match was added after the 4.3p2 release so it's not in the version you have.

There's a patch for 4.3p2 here: 
http://bugzilla.mindrot.org/show_bug.cgi?id=1180 (you want attachment 
#1127).

It's already in the snapshots, and the 4.4 release will be happening 
some time in the very near future.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: openssh 4.3p2 and Match keyword, Darren Tucker
Next by Date:  Disconnecting: Corrupted MAC on input, jain.vikash
Previous by Thread:  Re: openssh 4.3p2 and Match keyword, Darren Tucker
Next by Thread:  What changed FC2 -> Fc5 ?, Reg Clemens
Indexes:  [Date] [Thread] [Top] [All Lists]