Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 1 year ago.
Improve this question
How can I check if a username exists at a ssh server address using command line tools? For example, I would love to type,
isvaliduser [username] [ssh_server]
result: True
where isvaliduser is some magical function that tests whether a user with name username exists at ssh_server. But is this feasible?
My specific application: The remote server I need to access has a dynamic IP (I can't use a Dynamic DNS service). I can come up with a list of server addresses that contains my target address, but I need a way to figure out which one is mine. I thought one way of doing this would be to test if any of the addresses have the user myusername. But if you have another suggestion for solving my particular problem, I would be happy to hear it.
You have to connect to that server and check if the user is in the passwd for example:
ssh your_account_at_serve#[ssh_server] grep [username] /etc/passwd
If you would be able to enumerate users without authentication, it is considered as a information disclosure and security threat.
Related
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 2 years ago.
Improve this question
I have a website : https://linuxquizapp.com.uy.
I recently used Google Search Console to index it into google but when I do a search, I get this instead:
That's the right IP but most importantly, how did the IP ended up there instead of the domain name and also, is there anything I can do to correct this?
The app is written in Go, and there is no Apache or Nginx or whatnot configuration I should change?
Note- I am including an image in the question instead of plain text or a link so this does not get "outdated" as Google indexer updates stuff.
You need to redirect the IP as host based requests to the domain host.
Once you will do that, google indexes will get updated in few days to show the hostname as domain instead of IP address.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 6 years ago.
Improve this question
I enabled AD authentication for my Linux cluster via SSSD service. One side effect is I'm able to do SSO for the cluster now, but it works for some accounts and doesn't for the others. For example, I have two Linux boxes they all registered to the domain. And two accounts are a domain user, and both have been permitted to access the Linux boxes. One can ssh from one box to the other, but the other account doesn't. Default configures the SSSD and SSHD. I don't know what I have to check?
All right, I figure it out, I sudoed from one account to the other, so there are no password in the keytab for the second account, that's why the SSO doesn't work.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 1 year ago.
Improve this question
I am using the HexChat client on my local machine. I have been using an unregistered nick, eg. foobar. When my connection has dropped I get a message when I try to reconnect:
foobar is already in use. Retrying with foobar01...
foobar01 is already in use. Retrying with foobar02...
This has been like this for weeks. My actual username I am trying to use is not something anyone wold be using so it seems it is locked. Obviously I cannot register the nick because I can't connect with it.
What's the solution?
If you are saying it is happening only temporarily after disconnecting that is often referred to as a ghost and your old connection just hasn't timed out. If you register the nick you can forcefully disconnect it otherwise you wait.
If it is always happening and another user is actually using it /whois $thenick then there is nothing you can do about that since you didn't register it.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
What is the point of allowing ssh-keygen to generate empty passphrase keys when it is not recommended to use such keys for remote login? What situations would such keys be useful for?
The passphrase protects the key in its storage on your local computer.
Even without a passphrase, a key is still better than a password, as it can only be "stolen" if someone has physical access to your computer (or at least some kind of network access to the files on your computer), whereas a password can be brute-forced (or leaked from any number of places in case you re-use passwords).
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 9 years ago.
Improve this question
My application needs to establish a connection to my Azure SQL Database. But I cannot configure each IP Address manually in the firewall, because the application (Desktop App) will run in customers office from a variety of locations.
I also don't want to add the range (0.0.0.0 - 255.255.255.255) for security reasons.
But I know, the connection requests will only come from locations in germany. Is it possible to restrict the IP Range to german IP addresses?
If not, whats the possibility to achive maximum security and allow easy access to my customers?
Allow access to anyone is indeed a bad practice, even if you would be able to restrict access to geolocation, it is still insecure.
Although, there is no alternative configuration since all of your clients have different ip addresses that doesn't belong to a specific (company) range.
In this case the only option is to have an intermediary service (WCF service for example) that accepts user's requests, authenticates them, and provides the data. This service in turn would communicate with SQL Azure.
Good luck!