Visitors: 15350764
ROOTVG.net Portal
How to spot differences in OpenSSH
User Rating: / 1
AIX - AIX: Security
Written by Michael Felt   

There are ways to spot differences of ssh and sshd. Here are just a few.

And I hope you find the differences easy to spot and maybe even enlightening!

Last Updated ( Wednesday, 03 May 2017 )
Read more...
 
OpenSSH release Notes (since 6.0)
User Rating: / 0
AIX - Tools for AIX
Written by Michael Felt   

A lot has changed since OpenSSH-6.0 was released. Why worry about OpenSSH-6.0? Because that is the basis for the core functions and options provided by the current AIX openssh.base. As I understand the IBM packaging - the current, better would be to say latest - is based on OpenSSH-6.0 and includes patches to 'repair' CVE issues.

FYI: The current OpenSSH release is OpenSSH-7.5. (I am still using OpenSSH-7.4: a) lazy; b) turns out there is a rather specific requirement for OpenSSH-7.5)

OpenSSH is released in two versions: regular (for OpenBSD) and "portable" (for the rest of us). The portable release is recognized by adding p1 (sometimes p2) after the release name, e.g., OpenSSH-6.0p1 or OpenSSH-7.5p1.

The table shows name, release date and a "few word summary". The release name links to the release document.

Last Updated ( Wednesday, 03 May 2017 )
Read more...
 
SUDO for AIX - and NOEXEC
User Rating: / 0
AIX - Tools for AIX
Written by Michael Felt   

I am not a big user of sudo, but I frequently visit customers who are. One issue came up re: why they also installed the program "less" rather than use the AIX default "more".

The issue here is the escape in "more" to open a file with /usr/bin/vi - and then do a shell escape as an elevated user. TA-ta-TA-dah become root with an open shell.

So, my question was - why use "less"? How does this help with NOEXEC?

Last Updated ( Tuesday, 21 March 2017 )
Read more...
 
<< Start < Prev 1 2 3 4 Next > End >>

Results 4 - 6 of 12

Legacy PDFs

AIX 5.2
AIX 5.1