| delorie.com/archives/browse.cgi | search |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sources.redhat.com/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
| Date: | Fri, 12 Jul 2002 09:26:55 +0200 |
| From: | Corinna Vinschen <corinna-cygwin AT cygwin DOT com> |
| To: | cygwin AT cygwin DOT com |
| Subject: | Re: Getting sshd Configured on Win2k Platform |
| Message-ID: | <20020712092655.C10982@cygbert.vinschen.de> |
| Reply-To: | cygwin AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| References: | <200207120654 DOT g6C6sbRE000309 AT hemlock DOT highley-recommended DOT com> |
| Mime-Version: | 1.0 |
| In-Reply-To: | <200207120654.g6C6sbRE000309@hemlock.highley-recommended.com> |
| User-Agent: | Mutt/1.3.22.1i |
On Thu, Jul 11, 2002 at 11:54:37PM -0700, David Highley wrote:
> We think there are missing single quotes in the ssh-host-config script.
> When the environment parameter is done as in the script:
> -e "CYGWIN=binmode ntsec tty" variables expanded here
> the service will not start. If we do the following:
> -e '"CYGWIN=binmode ntsec tty"'
> the service will start and different users can login. We also found that
> a /etc/group entry was missing which was causing the setgid problem.
Works here w/o single quotes. They aren't needed.
> We also ran snoop to verify the we have the communication link
> encrypted an no information is leaking. For /etc/sshd_config we ended up
> with:
> RSAAuthentication yes
> RhostsAuthentication yes
> RhostsRSAAuthentication yes
> PasswordAuthentication yes
Rhosts authentication is BAD! Set to no.
> We did add ssh to the ${SYSTEMROOT}/system32/drivers/etc/services file.
Which should have been added already by ssh-host-config.
> We did not make any modifications to the Local Security Settings as
> discussed in the openssh README file.
Which is good since the README explicitely says:
===========================================================================
The following restrictions only apply to Cygwin versions up to 1.3.1
===========================================================================
[...]
Corinna
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Developer mailto:cygwin AT cygwin DOT com
Red Hat, Inc.
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Bug reporting: http://cygwin.com/bugs.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |