Comments for Cubicle Generation

Comment on Installing “Secure Shell2 (SSH2)” PHP Extension by Shiv

Shiv — Thu, 01 Dec 2011 13:35:06 +0000

antonioc, I am facing the same issue. Was you able to resolve it? If yes, please help :/

Comment on Reset the Root MySQL Password on Ubuntu 10.04 by KOD

KOD — Wed, 16 Nov 2011 06:54:49 +0000

Hi Thanks so much !!!!!!!! It works

Comment on Bend: Free Minimalist Code & Text Editor by dmay

dmay — Fri, 17 Jun 2011 15:32:34 +0000

Thank you! I already had lost last hope to find it

Comment on Disable SSH Known Host Checking by bikerbreath

bikerbreath — Sun, 10 Apr 2011 00:14:32 +0000

Thanks, Cody, good point… I am keeping all my eggs in one basket by using one set of keys for ssh.

Yes, the underlying problem is NAT. I suppose the real solution is to wait for IPv6 to hit the streets here.

Comment on Disable SSH Known Host Checking by Cody

Cody — Fri, 25 Mar 2011 05:14:42 +0000

You shouldn’t disable this globally but only client side as it opens you up for MITM attacks. Part of the protocol and usefulness of storing the fingerprints of each host is you can ensure that future connections are to the same host – encryption & authentication .

If you have to do this (behind NAT?) I’d suggest using a local SSH config instead (~/.ssh/config) and only disable the checks for known for known hosts.

@BikerBreath

That’s not really a good idea. If one set of keys was compromised then every machine would be affected.

It’s *good* that SSH asks you by default if you’re connecting to a new host. This allow you to establish the trust in the initial connection – once you do that you can ensure all subsequent connections to that host is 100% that host and 100% encrypted with no snooping. If the fingerprints don’t match from your known one SSH will warn you possibly preventing you from being victim of a MITM attack.

Comment on Disable SSH Known Host Checking by bikerbreath

bikerbreath — Fri, 25 Mar 2011 03:58:21 +0000

Using openSSH, this also works — but only if you have root access to the machines you are ssh-ing into:

Copy one set of host ssh key files to all ssh servers behind the same ip address. These keys are in several files named similarly to
/etc/ssh/ssh_host_dsa_key

Some of those key files (the private keys) are only root-readable. Keep them that way.

With the same host keys on all ssh servers, there will be no complaint about “host key has changed” from your ssh client, and you can keep strict host key checking enabled.

Of course, I have no idea about cryptography, so I wouldn’t know if the act of sharing your host keys across many disparate servers is a good idea. So far, so good, though.

Can someone comment on security issues, or other issues that could result from sharing of these host keys?

– Kevin

Comment on Installing “Secure Shell2 (SSH2)” PHP Extension by Romulous

Romulous — Tue, 01 Mar 2011 03:16:06 +0000

Even after patching I get:

make
/bin/sh /root/sources/ssh2-0.10/libtool –mode=compile cc -I. -I/root/sources/ssh2-0.10 -DPHP_ATOM_INC -I/root/sources/ssh2-0.10/include -I/root/sources/ssh2-0.10/main -I/root/sources/ssh2-0.10 -I/usr/include/php -I/usr/include/php/main -I/usr/include/php/TSRM -I/usr/include/php/Zend -I/usr/include/php/ext -I/usr/include/php/ext/date/lib -I/usr/local/include -DHAVE_CONFIG_H -g -O2 -c /root/sources/ssh2-0.10/ssh2.c -o ssh2.lo
mkdir .libs
cc -I. -I/root/sources/ssh2-0.10 -DPHP_ATOM_INC -I/root/sources/ssh2-0.10/include -I/root/sources/ssh2-0.10/main -I/root/sources/ssh2-0.10 -I/usr/include/php -I/usr/include/php/main -I/usr/include/php/TSRM -I/usr/include/php/Zend -I/usr/include/php/ext -I/usr/include/php/ext/date/lib -I/usr/local/include -DHAVE_CONFIG_H -g -O2 -c /root/sources/ssh2-0.10/ssh2.c -fPIC -DPIC -o .libs/ssh2.o
/root/sources/ssh2-0.10/ssh2.c:49: error: duplicate ‘static’
/root/sources/ssh2-0.10/ssh2.c: In function ‘zif_ssh2_methods_negotiated’:
/root/sources/ssh2-0.10/ssh2.c:483: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:484: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:485: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:486: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:487: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:488: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:489: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:490: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:491: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:492: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c: In function ‘zif_ssh2_fingerprint’:
/root/sources/ssh2-0.10/ssh2.c:536: warning: assignment discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c: In function ‘zif_ssh2_poll’:
/root/sources/ssh2-0.10/ssh2.c:885: error: ‘zval’ has no member named ‘is_ref’
/root/sources/ssh2-0.10/ssh2.c:885: error: ‘zval’ has no member named ‘refcount’
/root/sources/ssh2-0.10/ssh2.c:895: error: ‘zval’ has no member named ‘is_ref’
/root/sources/ssh2-0.10/ssh2.c:896: error: ‘zval’ has no member named ‘refcount’
/root/sources/ssh2-0.10/ssh2.c: In function ‘zif_ssh2_publickey_add’:
/root/sources/ssh2-0.10/ssh2.c:1005: error: ‘zval’ has no member named ‘is_ref’
/root/sources/ssh2-0.10/ssh2.c:1006: error: ‘zval’ has no member named ‘refcount’
/root/sources/ssh2-0.10/ssh2.c:1038: warning: passing argument 1 of ‘_efree’ discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c: In function ‘zif_ssh2_publickey_list’:
/root/sources/ssh2-0.10/ssh2.c:1097: warning: passing argument 4 of ‘add_assoc_stringl_ex’ discards qualifiers from pointer target type
/root/sources/ssh2-0.10/ssh2.c:1098: warning: passing argument 4 of ‘add_assoc_stringl_ex’ discards qualifiers from pointer target type
make: *** [ssh2.lo] Error 1

Comment on Installing “Secure Shell2 (SSH2)” PHP Extension by Nuri Hodges

Nuri Hodges — Tue, 16 Nov 2010 06:47:08 +0000

Are you still having this issue, and are you saying it works through CLI but not when accessed from a browser?

Comment on json_encode Does Not Exist by Nuri Hodges

Nuri Hodges — Mon, 08 Nov 2010 17:52:41 +0000

It got me, again

Comment on Installing “Secure Shell2 (SSH2)” PHP Extension by antonioc

antonioc — Thu, 04 Nov 2010 19:05:07 +0000

I’m using version libssh2-1.2.7 but am having to run the script error
by apache. PHP works fine.

Error menssage:

——————————————-

[Thu Nov 04 15:03:43 2010] [error] [client 9.18.218.31] PHP Warning: ssh2_connect() [function.ssh2-connect]: Unable to connect to 9.18.218.20 on port 22 in /var/www/html/teste_ssh01.php on line 11

[Thu Nov 04 15:03:43 2010] [error] [client 9.18.218.31] PHP Warning: ssh2_connect() [function.ssh2-connect]: Unable to connect to 9.18.218.20 in /var/www/html/teste_ssh01.php on line 11

——————————————-

Script:

//Tecmaster
$server = '9.18.218.10';
$user = 'root';
$pass = 'pass';

if (!function_exists("ssh2_connect")) die("function ssh2_connect doesn't exist");

if(!($con = ssh2_connect($server, 22))){
echo "fail: unable to establish connection\n";
}
else {

if(!ssh2_auth_password($con, $user, $pass)) {
echo "fail: unable to authenticate\n";
} else {
// allright, we're in!
echo "okay: logged in…\n";

// execute a command
if (!($stream = ssh2_exec($con, "df -h" ))) {
echo "fail: unable to execute command\n";
} else {
// collect returning data from command
stream_set_blocking($stream, true);
$data = "";
while ($buf = fread($stream,4096)) {

$data .= $buf."”;
echo $buf.”";
}

fclose($stream);
}
}
}