delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2000/07/31/07:57:53

Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
Message-ID: <3985694E.CBA7E7FA@cygnus.com>
Date: Mon, 31 Jul 2000 13:55:58 +0200
From: Corinna Vinschen <vinschen AT cygnus DOT com>
X-Mailer: Mozilla 4.73 [en] (X11; I; Linux 2.2.14 i686)
X-Accept-Language: de, en
MIME-Version: 1.0
To: Jens Yllman <jens AT uniweb DOT se>
CC: cygwin AT sources DOT redhat DOT com, Edmund GRIMLEY EVANS <edmundo AT rano DOT org>
Subject: Re: NT login problems
References: <20000731101842 DOT A1077 AT daisy DOT vocalis DOT com> <3985465D DOT 80BF9A3A AT uniweb DOT se> 

I have just uploaded a patched version of login to sources.redhat.com.

There was a bad mistake in NT password authentication.

Sigh. I shouldn't upload on weekend...

Jens Yllman wrote:
>  I also have trouble with login after upgrading to 1.1.3 of cygwin1.dll.
> It worked earlier. And the funny thing is that if I run login and don't
> enter any password it say it's ok. The same if I connect through telnet.
> But if I do ftp it will work with the password and not without.
> 
>  Jens Yllman
> 
> Edmund GRIMLEY EVANS wrote:
> >
> > Is there some trick for getting passwords to work with NT? If I run
> > telnetd under Cygwin, I can connect, but my password is not
> > recognised. Similary if I run login. If I run passwd, it only asks me
> > for the new password ... then says it's incorrect!

Thanks to your description I have found an error in the passwd tool
which usually only affects admin users. In that case, a local variable
remained uninitialized. This will show up in the 1.1.4 version of Cygwin
which should be uploaded this week.
I'm wondering why that wasn't found much earlier since that tool wasn't
changed for months.
However, it's correct that you are not asked for the old passwd as
admin user. Otherwise you wouldn't be able to change other user's
passwords as admin.

> > Alternatively, is there some way of just bypassing NT's authentication
> > (which is presumably the cause of the problem) other than rebuilding
> > login with a back door?

No. If started inetd as user LocalSystem, you must give your password
since it's required to change user context.

If you want to bypass login, you would have to wrote your own (shell
script doing nothing but execing a shell for example),
as well as starting inetd under your user account so that the user
context is correct on startup.

This doesn't help for ftpd. In that case, you would need to rewrite
ftpd so that it doesn't use NT security.

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                        mailto:cygwin AT sources DOT redhat DOT com
Red Hat, Inc.
mailto:vinschen AT cygnus DOT com

--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019