it's not your problem. While I
don't use Synaptic it seems to me your problem is covered e.g. here:
https://askubuntu.com/questions/1243897/pkexec-authentication-fails-over-ssh-x11-forwarding-why
You could try sudo synaptic-pkexec or run
/usr/lib/policykit-1-gnome/polkit-gnome-authen
On 4/4/25 17:00, Eben King wrote:
Also it suspends the OS after a few minutes, so I
gotta find out where that's controlled.
/etc/gdm3/greeter.dconf-defaults looks to be a likely candidate, as in
https://unix.stackexchange.com/questions/748759/disabling-suspend-etc-on-debian-12
I changed it
On Fri, Apr 4, 2025 at 8:37 PM Eben King wrote:
>
> On 4/4/25 16:41, George at Clug wrote:
> >
> > [...]
> > If you need to reboot to complete the installation
> > # systemctl reboot
>
> shutdown doesn't. I mean it acts like it does, goes through the
> motions, and ends up with a computer that's
ng is
enabled and disabled for ssh connection
udisksctl mount -b /dev/sdb1
On Fri, 4 Apr 2025 18:13:40 -0400
Eben King wrote:
> > Not necessarily. I routinely ssh into all my computers, to their
> > root and user accounts,
>
> So you ssh-login as root, or do you login as a user then su to root?
I log in as root. "ssh r...@dragon.example.com&q
On 4/4/25 18:08, Charles Curley wrote:
On Fri, 4 Apr 2025 17:00:09 -0400
Eben King wrote:
to run synaptic you would need to do this on the computer itself,
not remotely unless you are using a remote X or Wayland client like
VNC.
So ssh is right out? That sucketh much. It's not
On Fri, 4 Apr 2025 17:00:09 -0400
Eben King wrote:
> > to run synaptic you would need to do this on the computer itself,
> > not remotely unless you are using a remote X or Wayland client like
> > VNC.
>
> So ssh is right out? That sucketh much. It's not all X
On 4/4/25 16:41, George at Clug wrote:
Hi,
I believe you are using a terminal from another computer, and not using a remote X or
Wayland client like VNC? (e.g. "I usually access it via ssh")
That is correct, ssh in bash in xfce4-terminal in XFCE in X11 under
kernel 6.1.0-32-a
Hi,
I believe you are using a terminal from another computer, and not using a
remote X or Wayland client like VNC? (e.g. "I usually access it via ssh")
If so, please use apt to install software.
for example, become root
$ sudo -i or just su (which is what I use) $ su
After logging
Hi. I have this machine "alexandria" onto which I installed Debian
yesterday:
eben@alexandria:~$ cat /etc/debian_version
12.10
It has a video card and a keyboard, but to log in there I have to get
down on the floor, so I usually access it via ssh. Right now I'm trying
to
On Fri, 21 Feb 2025 13:17:21 +0800
jeremy ardley wrote:
>
> Logging in as root on a server is highly dangerous, especially if it
> has an internet facing ssh port.
There is an approach which might be helpful here and there:
spawn a second ssh daemon with root login and bind n
On Wed, Jan 22, 2025 at 8:52 AM Greg Wooledge wrote:
> On Wed, Jan 22, 2025 at 13:29:41 +, Chris Green wrote:
> > I have a remote headless system (running bullseye, will be updating to
> > bookworm when I'm next there) that can connect to some systems using
> >
Alain D D Williams wrote:
> On Wed, Jan 22, 2025 at 01:29:41PM +, Chris Green wrote:
> > I have a remote headless system (running bullseye, will be updating to
> > bookworm when I'm next there) that can connect to some systems using
> > ssh but not to others (t
Greg Wooledge wrote:
> On Wed, Jan 22, 2025 at 13:29:41 +, Chris Green wrote:
> > I have a remote headless system (running bullseye, will be updating to
> > bookworm when I'm next there) that can connect to some systems using
> > ssh but not to others (to which I c
On Wed, Jan 22, 2025 at 09:13:35AM -0500, Greg Wooledge wrote:
> On Wed, Jan 22, 2025 at 14:56:54 +0100, to...@tuxteam.de wrote:
> > Yes, that would be totally useful. As has been stated in this
> > list last days, ping actually does two things for you:
> >
> > - resolve the host's name to an IP
On Wed, Jan 22, 2025 at 14:56:54 +0100, to...@tuxteam.de wrote:
> Yes, that would be totally useful. As has been stated in this
> list last days, ping actually does two things for you:
>
> - resolve the host's name to an IP address
> - check connectivity to that host
Well, three really. It res
On Wed, Jan 22, 2025 at 01:29:41PM +, Chris Green wrote:
> I have a remote headless system (running bullseye, will be updating to
> bookworm when I'm next there) that can connect to some systems using
> ssh but not to others (to which I can connect from everywhere else).
>
On Wed, Jan 22, 2025 at 08:51:35AM -0500, Greg Wooledge wrote:
> On Wed, Jan 22, 2025 at 13:29:41 +, Chris Green wrote:
> > I have a remote headless system (running bullseye, will be updating to
> > bookworm when I'm next there) that can connect to some systems using
>
On Wed, Jan 22, 2025 at 13:29:41 +, Chris Green wrote:
> I have a remote headless system (running bullseye, will be updating to
> bookworm when I'm next there) that can connect to some systems using
> ssh but not to others (to which I can connect from everywhere else).
What *act
I have a remote headless system (running bullseye, will be updating to
bookworm when I'm next there) that can connect to some systems using
ssh but not to others (to which I can connect from everywhere else).
It also can't ping the systems which it can't connect ssh to.
I can&#x
On Wed, Dec 11, 2024 at 18:42 wrote:
..l
If you think something is actually running and the monitor's in some
> power-saving state, you can use "ddccontrol" to change the power-saving
> state. Here's how I turn each monitor off and on in turn (in sh):
...
Looks pretty hairy ;-D
Thanks, ebe, I
On 12/11/24 07:33, Tom Browder wrote:
> I can ssh in, reboot, and all is well. Is there any way to completely turn
> off the screen saver and its timer via system settings?
>
> There may be related problems with my newly installed HP printer which
> sometimes hangs when attempting
On Wed, Dec 11, 2024 at 9:42 AM Tom Browder wrote:
>
> I can ssh in, reboot, and all is well. Is there any way to completely turn
> off the screen saver and its timer via system settings?
>
> There may be related problems with my newly installed HP printer which
> so
to...@tuxteam.de wrote:
> On Wed, Dec 11, 2024 at 04:14:58PM +0100, to...@tuxteam.de wrote:
> >
> > DISPLAY=:0
>
> (of course, this will only work if there /is/ an X server running
> in the first place :)
(of course, if there is no X server running, only the console
setting has any meaning.
On Wed, Dec 11, 2024 at 09:01:19AM -0600, Tom Browder wrote:
> On Wed, Dec 11, 2024 at 08:21 Tom Browder wrote:
>
> > On Wed, Dec 11, 2024 at 07:14 Dan Ritter wrote:
> >
> >> Tom Browder wrote:
> >
> > ...
> >
> >> > I can ssh in
On Wed, Dec 11, 2024 at 04:14:58PM +0100, to...@tuxteam.de wrote:
> On Wed, Dec 11, 2024 at 09:01:19AM -0600, Tom Browder wrote:
[...]
> > unable to open display ""
>
> This one is because they have to "talk" to the right X server, so they
> need the DISPLAY env variable set, to know which
On Wed, Dec 11, 2024 at 08:21 Tom Browder wrote:
> On Wed, Dec 11, 2024 at 07:14 Dan Ritter wrote:
>
>> Tom Browder wrote:
>
> ...
>
>> > I can ssh in, reboot, and all is well. Is there any way to completely
>> turn
>> > off the screen saver and i
On Wed, Dec 11, 2024 at 07:14 Dan Ritter wrote:
> Tom Browder wrote:
...
> > I can ssh in, reboot, and all is well. Is there any way to completely
> turn
> > off the screen saver and its timer via system settings?
>
> There are three things that could be called screen
Tom Browder wrote:
> I can ssh in, reboot, and all is well. Is there any way to completely turn
> off the screen saver and its timer via system settings?
There are three things that could be called screen saver
settings:
- the console blanker is controlled via
setterm -b
I can ssh in, reboot, and all is well. Is there any way to completely turn
off the screen saver and its timer via system settings?
There may be related problems with my newly installed HP printer which
sometimes hangs when attempting to print random web pages (I don't do it
intentionally bu
* didier gaumet [24-12/05=Th 10:11 +0100]:
> Le 05/12/2024 à 06:52, Ben Wong a écrit :
>> Howdy!
>>
>> On most (all?) current Unix systems I can use `write` to communicate
>> with users logged in over `ssh`. However, now that Debian is removing
>> `mesg` and
Le 05/12/2024 à 06:52, Ben Wong a écrit :
Howdy!
On most (all?) current Unix systems I can use `write` to communicate
with users logged in over `ssh`. However, now that Debian is removing
`mesg` and `writed` from util-linux [1], I'm wondering what the
officially recommended replacement
Howdy!
On most (all?) current Unix systems I can use `write` to communicate with
users logged in over `ssh`. However, now that Debian is removing `mesg` and
`writed` from util-linux [1], I'm wondering what the officially recommended
replacement is. I mean, I suppose I could always look up
Chris Green wrote:
> I have quite a long ~/.ssh/config file.
>
> I have been trying to rationalise it a bit and share bits that are
> common to several systems. So I have two sections referring to a
> host that I call 'caracal', the first is:-
>
> #
>
On Wed, Nov 13, 2024 at 13:56:11 +, Chris Green wrote:
> ... and at the end of ~/.ssh/config:-
> #
> # 'global' options
> #
> Host *
> User chris
> ~
> ~
> chris$ ssh caracal
> ch...@caracal.mythic-beasts.com's passw
I have quite a long ~/.ssh/config file.
I have been trying to rationalise it a bit and share bits that are
common to several systems. So I have two sections referring to a
host that I call 'caracal', the first is:-
#
#
# Mythic Beasts hosting
#
Host
On 2024-08-06, George at Clug wrote:
> # nano /etc/nftables.conf
/etc/nftables.conf is used to load rules at boot by systemd
nftables.service. It's safer to edit another file, test it with nft -f,
then if it's correct to copy it to /etc/nftables.conf. If something goes
wrong a reboot could restor
; > that I have been using (e.g. ssh, http, ntp, https).
>
> My /etc/services uses the term "domain" rather than "dns" for 53.
Thanks David,
Using 'domain' does work.
# nano /etc/nftables.conf
...
oifname "enp1s0" ct state new udp d
On Tue 06 Aug 2024 at 14:25:45 (+1000), George at Clug wrote:
> However I have one issue, my nftables is not recognising the label
> 'dns' for port 53, although it is recognising labels for other ports
> that I have been using (e.g. ssh, http, ntp, https).
My /etc/services us
Hi,
I have my simple nftables firewall working (thanks to people who have
posted).
However I have one issue, my nftables is not recognising the label
'dns' for port 53, although it is recognising labels for other ports
that I have been using (e.g. ssh, http, ntp, https).
When I
Steffen Dettmer wrote:
> I encountered multiple times that debian based containers use fail2ban by
> default with a max attempt value of 5, even for SSH logins using strong
> asymmetric keys.
There is no "debian based container" standard. Talk to whoever
built your container.
Hi,
I encountered multiple times that debian based containers use fail2ban by
default with a max attempt value of 5, even for SSH logins using strong
asymmetric keys.
(Again I just got locked out for 1h (fortunately a container, so I can
access anyway). Do you know what happened? My SSH key
> > > works just fine, and so does networking. Bluetooth is normally disabled.
> > > However, when I have Bluetooth turned on (and after I turn it off), SSH
> > > is *slow*.
> > > Is there some sort of cross-talk issue?
> >
> > Sometimes Bluetooth
normally disabled.
However, when I have Bluetooth turned on (and after I turn it off), SSH
is *slow*.
Is there some sort of cross-talk issue?
Sometimes Bluetooth and Wi-Fi share the same radio. Are you running ssh over
Wi-Fi? Try running ssh over Ethernet while using Bluetooth. Is ssh still slow
t; > However, when I have Bluetooth turned on (and after I turn it off), SSH
> > is *slow*.
> > Is there some sort of cross-talk issue?
>
> Sometimes Bluetooth and Wi-Fi share the same radio. Are you running ssh over
> Wi-Fi? Try running ssh over Ethernet while using Blue
On Sun, Jun 16, 2024 at 02:30:32PM -0600, Charles Curley wrote:
> On one of my machines, I have some interesting interference. Bluetooth
> works just fine, and so does networking. Bluetooth is normally disabled.
> However, when I have Bluetooth turned on (and after I turn it off), SSH
&
On one of my machines, I have some interesting interference. Bluetooth
works just fine, and so does networking. Bluetooth is normally disabled.
However, when I have Bluetooth turned on (and after I turn it off), SSH
is *slow*.
I gather that the network controller is also the Bluetooth controller
> >
> > (I wonder what the string "Debian-5" may mean. The Debian 12 machine has
> > debug1: Local version string SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u2
> > So "-5" is not the Debian version.
>
> Package version in bookworm: 1:9.2p1-2+deb12u2
>
>
On 01/06/2024 16:42, Thomas Schmitt wrote:
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.7p1
Debian-5
(I wonder what the string "Debian-5" may mean. The Debian 12 machine has
debug1: Local version string SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u2
So &
Hi,
Jeffrey Walton wrote:
> If I am not mistaken, the problem you are experiencing is due to using
> RSA/SHA-1 on the old machine.
Max Nikulin wrote:
> My reading of /usr/share/doc/openssh-client/NEWS.Debian.gz is that ssh-rsa
> means SHA1 while clients offers SHA256 for the sam
On 01/06/2024 01:52, Thomas Schmitt wrote:
debug1: Offering public key:/home/.../.ssh/id_rsa RSA SHA256:...
[...]
The Debian 12 ssh client is obviously willing to try ssh-rsa.
My reading of /usr/share/doc/openssh-client/NEWS.Debian.gz is that
ssh-rsa means SHA1 while clients offers
On Fri, May 31, 2024 at 7:08 PM Thomas Schmitt wrote:
>
> i still have network access to a Debian 8 system, to which i logged in
> from Debian 11 via ssh and a ssh-rsa key. After the upgrade to Debian 12
> ssh fails with this public key authentication.
> The probably relevant mess
Hi,
the following line in ~/.ssh/config did the trick:
PubkeyAcceptedAlgorithms +ssh-rsa
This lets ssh -v report:
debug1: Offering public key: /home/.../.ssh/id_rsa RSA SHA256:...
debug1: Server accepts key: /home/.../.ssh/id_rsa RSA SHA256:...
Authenticated to ... ([...]:22) using
On 31 May 2024 20:52 +0200, from scdbac...@gmx.net (Thomas Schmitt):
> The ssh-rsa key was generated by Debian 10. man ssh-keygen of buster
> says the default of option -b with RSA was 2048.
> (Does anybody know how to analyze a key file in regard to such
> parameters ?)
$ ssh-
Hi,
i still have network access to a Debian 8 system, to which i logged in
from Debian 11 via ssh and a ssh-rsa key. After the upgrade to Debian 12
ssh fails with this public key authentication.
The probably relevant messages from a run of ssh -vvv are:
debug1: Offering public key: /home
allan wrote on 18/04/2024 13:37:
Bug report submitted. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069236
Hi,
may I ask how you disabled IPv6 on these machines?
Regards,
Jörg.
Hi Allan,
On 18/04/24 at 12:38, allan wrote:
Have four Sid machines here and ssh -X has worked fine on all of them
for years. For the last several days I haven't been able to run
graphical applications over ssh from any of these machines.
Error says "cannot open display" and if
Bug report submitted. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069236
On Thu, Apr 18, 2024 at 6:18 AM allan wrote:
>
> I just fixed it. in /etc/ssh/sshd_config I changed
>
> #AddressFamily any
>
> to
>
> AddressFamily inet
>
> Reading the host's
I just fixed it. in /etc/ssh/sshd_config I changed
#AddressFamily any
to
AddressFamily inet
Reading the host's journal got me pointed in the right direction.
Thank you for the suggestion :)
On Thu, Apr 18, 2024 at 6:10 AM allan wrote:
>
> > In the context of these SSH sessi
> In the context of these SSH sessions, are those clients or servers?
Both. I've run all four machines as both host and guest when testing.
> Do the logs on the host ip.add.re.ss provide any further details?
journalctl -t sshd gives this -
Apr 18 05:29:03 server sshd[2052]: error
On 18 Apr 2024 05:38 -0500, from wizard10...@gmail.com (allan):
> Have four Sid machines here
In the context of these SSH sessions, are those clients or servers?
> ssh -vv -Y u...@ip.add.re.ss just gives "X11 forwarding request failed
> on channel 0"
Do the logs on th
Have four Sid machines here and ssh -X has worked fine on all of them
for years. For the last several days I haven't been able to run
graphical applications over ssh from any of these machines.
Error says "cannot open display" and if I ssh into the machine
$DISPLAY is indeed b
Hi,
On Sat, Mar 30, 2024 at 08:57:14PM +, fxkl4...@protonmail.com wrote:
> so is this a threat to us normal debian users
If you have to ask, i.e. you do not know how to check that your
Debian install is secured against extremely well known recent
exploits that have been plastered across the e
On 2024-03-30, fxkl4...@protonmail.com wrote:
> so is this a threat to us normal debian users
> if so how do we fix it
Debian stable is not affected, Debian testing, unstable and
experimental must be updated.
https://lists.debian.org/debian-security-announce/2024/msg00057.html
alton wrote:
>>
>> Seems relevant since Debian adopted xz about 10 years ago.
>>
>> -- Forwarded message -
>> From: Andres Freund
>> Date: Fri, Mar 29, 2024 at 12:10 PM
>> Subject: [oss-security] backdoor in upstream xz/liblzma leading to s
eund
> Date: Fri, Mar 29, 2024 at 12:10 PM
> Subject: [oss-security] backdoor in upstream xz/liblzma leading to ssh
> server compromise
> To:
>
> Hi,
>
> After observing a few odd symptoms around liblzma (part of the xz package) on
> Debian sid installations over the l
Hello,
On Fri, Mar 29, 2024 at 01:52:18PM -0400, Jeffrey Walton wrote:
> Seems relevant since Debian adopted xz about 10 years ago.
Though we do not know how or why this developer has come to recently
put apparent exploits in it, so we can't yet draw much of a
conclusion beyond "sometimes people
On Fri, Mar 29, 2024 at 01:52:18PM -0400, Jeffrey Walton wrote:
> Seems relevant since Debian adopted xz about 10 years ago.
>
Also note that this has been addressed in Debian:
https://lists.debian.org/debian-security-announce/2024/msg00057.html
Provided here for the benefit those who are not sub
Well, it appears like most things in life this one was self inflicted.
🤬
Yesterday I was working on another project and to verify something was
occurring the 'strace' utility was recommended. It dawned on me that
this could help me get a clue as to what was happening to the
gnome-keyring-daemon.
at errors might have occurred the last time you updated,
> or whether you have a locally installed version of "ssh" in your PATH
> before /usr/bin/ssh, or... anything. Anything at all.
>
> When asking for help, it's best to give all of the relevant details up
> front.
st" version of something
is unhelpful. This goes double when you're on a testing or unstable
system. We don't know how long ago you updated, or what mirrors you're
using, or what errors might have occurred the last time you updated,
or whether you have a locally installed ve
can't help you more on this topic.
The given information is not enough to debug, and I'd never seen any other
connection failure cases.
My advice is, even it's annoying to see a lot of verbose output on your
terminal, that you can use options "-vvv" in your ssh call, l
x.x.x.x port 22
>
> This sounds most likely that your SSH client (program at your local
> machine) has an outdated SSH implementation. Try to update this
> program first.
I have the latest version!!! I recall that this is a Debian/unstable
machine, which I upgrade regularly. So, every
Vincent Lefevre wrote:
> Since 2 years (from early 2022 to 2023-11-26), I've got recurrent
> errors like
>
> kex_exchange_identification: read: Connection reset by peer
> Connection reset by x.x.x.x port 22
This sounds most likely that your SSH client (program at your lo
Since 2 years (from early 2022 to 2023-11-26), I've got recurrent
errors like
kex_exchange_identification: read: Connection reset by peer
Connection reset by x.x.x.x port 22
or
kex_exchange_identification: Connection closed by remote host
Connection closed by x.x.x.x port 22
But yesterday, the
On Mon, Nov 13, 2023 at 11:10:17AM +0100, Vincent Lefevre wrote:
[...]
> This is what I've done for my old laptop, but the dropbear package
> is *not* needed for that! You just need the dropbear-initramfs
> package [...]
Aha -- now I know the full story. Thanks, Vincent (and all the other
smart
On 2023-11-10 15:32:53 +, fxkl4...@protonmail.com wrote:
> On Fri, 10 Nov 2023, Vincent Lefevre wrote:
>
> > On 2023-11-10 10:57:21 +0100, Michael wrote:
> >> On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
> >>> No, this is not a normal phenomenon for bookworm upgrades. I've
On Fri, Nov 10, 2023 at 01:01:28PM -0500, Dan Ritter wrote:
> to...@tuxteam.de wrote:
[...]
> > Wait a minute: dropbear is supposed to run in the initramfs, while
> > sshd will be active afterwards, after pivot-root and all that, right?
> >
> > Then I don't quite get why they should collide at
to...@tuxteam.de wrote:
> On Fri, Nov 10, 2023 at 03:32:53PM +, fxkl4...@protonmail.com wrote:
> > On Fri, 10 Nov 2023, Vincent Lefevre wrote:
> >
> > > On 2023-11-10 10:57:21 +0100, Michael wrote:
> > >> On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
> > >>> No, this is not
On Fri, Nov 10, 2023 at 03:32:53PM +, fxkl4...@protonmail.com wrote:
> On Fri, 10 Nov 2023, Vincent Lefevre wrote:
>
> > On 2023-11-10 10:57:21 +0100, Michael wrote:
> >> On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
> >>> No, this is not a normal phenomenon for bookworm upgr
On Fri 10 Nov 2023 at 15:32:53 (+), fxkl4...@protonmail.com wrote:
> On Fri, 10 Nov 2023, Vincent Lefevre wrote:
>
> > On 2023-11-10 10:57:21 +0100, Michael wrote:
> >> On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
> >>> No, this is not a normal phenomenon for bookworm upgrad
On Fri, 10 Nov 2023, Vincent Lefevre wrote:
> On 2023-11-10 10:57:21 +0100, Michael wrote:
>> On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
>>> No, this is not a normal phenomenon for bookworm upgrades. I've never
>>> heard of it happening to anyone before.
>>
>> i disagree. i h
On 2023-11-10 10:57:21 +0100, Michael wrote:
> On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
> > No, this is not a normal phenomenon for bookworm upgrades. I've never
> > heard of it happening to anyone before.
>
> i disagree. i had the same problem b/c i also had dropbear insta
On Thursday, 9 November 2023 19:08:25 CET, Greg Wooledge wrote:
No, this is not a normal phenomenon for bookworm upgrades. I've never
heard of it happening to anyone before.
i disagree. i had the same problem b/c i also had dropbear installed. for
some reason the dropbear daemon is started f
lseye to bookworm with no problems
> >>> when i try ssh with -X/-Y to the bookworm machine x11 forwarding fails
> >>>
> >>> debug1: Requesting X11 forwarding with authentication spoofing.
> >>> debug1: Sending environment.
> >>> debug1: S
On Thu, 9 Nov 2023, Jeffrey Walton wrote:
> On Thu, Nov 9, 2023 at 11:43 AM Greg Wooledge wrote:
>>
>> On Thu, Nov 09, 2023 at 03:01:29PM +, fxkl4...@protonmail.com wrote:
>>> i upgraded from bullseye to bookworm with no problems
>>> when i try ssh with
On Thu, 9 Nov 2023, Greg Wooledge wrote:
> On Thu, Nov 09, 2023 at 04:59:32PM +, fxkl4...@protonmail.com wrote:
>> now it makes a bit more sense
>> sshd isn't running
>> for some reason the upgrade switched to dropbear
>> is this a new thing for bookworm
>> is there a reason i shouldn't disabl
On Thu, Nov 9, 2023 at 11:43 AM Greg Wooledge wrote:
>
> On Thu, Nov 09, 2023 at 03:01:29PM +, fxkl4...@protonmail.com wrote:
> > i upgraded from bullseye to bookworm with no problems
> > when i try ssh with -X/-Y to the bookworm machine x11 forwarding fails
> >
&g
On Thu, Nov 09, 2023 at 04:59:32PM +, fxkl4...@protonmail.com wrote:
> now it makes a bit more sense
> sshd isn't running
> for some reason the upgrade switched to dropbear
> is this a new thing for bookworm
> is there a reason i shouldn't disable dropbear and use sshd
No, this is not a normal
On Thu, 9 Nov 2023, fxkl4...@protonmail.com wrote:
> On Thu, 9 Nov 2023, Greg Wooledge wrote:
>
>> On Thu, Nov 09, 2023 at 03:01:29PM +, fxkl4...@protonmail.com wrote:
>>> i upgraded from bullseye to bookworm with no problems
>>> when i try ssh with -X/
On Thu, 9 Nov 2023, Greg Wooledge wrote:
> On Thu, Nov 09, 2023 at 03:01:29PM +, fxkl4...@protonmail.com wrote:
>> i upgraded from bullseye to bookworm with no problems
>> when i try ssh with -X/-Y to the bookworm machine x11 forwarding fails
>>
>> debug1: Req
On Thu, Nov 09, 2023 at 03:01:29PM +, fxkl4...@protonmail.com wrote:
> i upgraded from bullseye to bookworm with no problems
> when i try ssh with -X/-Y to the bookworm machine x11 forwarding fails
>
> debug1: Requesting X11 forwarding with authentication spoofing.
>
i upgraded from bullseye to bookworm with no problems
when i try ssh with -X/-Y to the bookworm machine x11 forwarding fails
debug1: Requesting X11 forwarding with authentication spoofing.
debug1: Sending environment.
debug1: Sending env LANG = en_US.UTF-8
debug1: Sending env LC_ALL = en_US.UTF-8
authenticator
combo
edit /etc/pam.d/sshd and comment out comon-auth
|# @include common-auth in /etc/ssh/sshd_config UsePAM yes ||ChallengeResponseAuthentication yes ||PasswordAuthentication no AuthenticationMethods
publickey,keyboard-interactive |
On Wed, Oct 04 2023 at 10:08:14 AM, jeremy ardley
wrote:
> I have set up a server with sshd allowing public key access. I also
> set up google authenticator in pam by putting this line at the head of
> /etc/pam.d/sshd
>
> auth required pam_google_authenticator.so
>
> If I connect to the server wi
I have set up a server with sshd allowing public key access. I also set
up google authenticator in pam by putting this line at the head of
/etc/pam.d/sshd
auth required pam_google_authenticator.so
If I connect to the server without a public key I get the authenticator
prompt and then password
dbus.service
/run/user/1000/gcr/ssh gcr-ssh-agent.socket
gcr-ssh-agent.service
/run/user/1000/gnupg/S.dirmngr dirmngr.socket
dirmngr.service
/run/user/1000/gnupg/S.gpg-agent gpg-agent.socket
gpg-agent.service
/run/use
On 14/08/2023 07:30, Nate Bargmann wrote:
I have been using the GNOME keyring applet to manage the SSH public key
passwords I use as it prompts to save passwords and then lets me SSH to
other hosts without out a password prompt.
I do not know how it is arranged in Gnome, but I hope my
I now have two desktop systems running Bookworm with GNOME. The laptop
was upgraded last month and I upgraded the desktop this afternoon. I
have been using the GNOME keyring applet to manage the SSH public key
passwords I use as it prompts to save passwords and then lets me SSH to
other hosts
On Montag, 7. August 2023 16:33:26 CEST you wrote:
> On Montag, 7. August 2023 15:19:49 CEST you wrote:
> > Dear all,
> >
> > I just dist-upgraded my Raspberry Pi from buster to bookworm, and while
> >
> > ssh -Y...
> >
> > worked like a charm in before
1 - 100 of 3301 matches
Mail list logo
