1. K

    Other Git "server" via SSH

    Hello all, With Git, you basically have 3 choices for a server: Git protocol (similar to svnserve but with no authentication or encryption) HTTP(s)/CGI/smart/dumb/webdav SSH Personally I am not entirely happy with any of them (Git protocol has no authentication, HTTP(s) needs central...
  2. C

    Cannot get SFTP work in FreeBSD 12.4 Jails

    Hi, I am new to this forum. In FreeBSD 12.3 Jail, I can easily to activate SSH server my the following command: sysrc sshd_enable=YES && \ service sshd start After that, I import my public key to user and I can use SSH / SFTP to connect to the Jail. However, in FreeBSD 12.4, my steps can only...
  3. First_Law_of_Unix

    Solved SSH keeps disconnecting from Supermicro Server after few mins, then completely refuses to reconnect.

    Hello. I installed FreeBSD 13.1 on a Supermicro X8DT3 and also on an AMD desktop machine. I installed OpenSSH server on the X8DT3. Now when I try to connect to it by LAN using: # ssh -vvv -p 2222 user@ Everything works. But then after some time it gets disconnected and then I...
  4. byrnejb

    OpenSSH_7.9p1, OpenSSL 1.1.1k-freebsd 24 Aug 2021 and CVE-2019-16905

    13.0-RELEASE-p6 I am dealing with a pci audit and the reason given for a failure is this: CVSS Base Score:4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P CVSS Temporal Score:3.4 E:POC/RL:OF/RC:C Severity:3 QID:38773 Category:General remote services CVE ID:CVE-2019-16905 Vendor Reference:OpenSSH 8.1 Bugtraq...
  5. bibi

    libfido2 and openssh-portable

    Hello, I am trying to generate a fido2 ed25519 ssh keys with the libfido2 and openssh-portable. My Yubikey is recognised, but when i try to do the ssh-keygen i run into the following issue: root@builder:~ # pkg info | grep libfido2 libfido2-1.5.0 Provides library functionality...
  6. micski

    SFTP with SSH key: No supported authentication methods available

    If I configure an SFTP-only user, that will connect via SFTP and public key to a jailed (chroot'ed) directory, then the user is denied access. I see the following error in the log. # tail /var/log/auth.log Mar 24 23:40:05 wopr sshd[11628]: user joshua login class [preauth] Mar 24 23:40:05 wopr...
  7. victord

    OpenSSH Username Enumeration Vulnerability

    Greetings, First of all, forgive me if I'm not in the right FreeBSD forum. Feel free to redirect me to the proper channel. I have this vulnerability on one of my production web servers which is failing a PCI compliance test. I've been searching and reading but haven't found a solution yet. I'm...
  8. timypcr

    OpenSSH Update for PCI Compliance

    According to our third-party PCI scanner (conducted by Trustwave) current OpenSSH version is no longer supported. The version of OpenSSH detected is no longer supported by the vendor. No further security patches or upgrades will be released by the vendor for this version, and the vendor will...