Mail Archives: cygwin/2002/10/23/18:54:11

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2002/10/23/18:54:11

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sources.redhat.com/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

X-Original-Recipient: <cygwin AT cygwin DOT com>

Message-ID: <3DB72881.92F362E1@biochem.kth.se>

Date: Thu, 24 Oct 2002 00:53:53 +0200

From: Fredrik Viklund <fredrikv AT biochem DOT kth DOT se>

X-Accept-Language: en

MIME-Version: 1.0

To: cygwin AT cygwin DOT com

Subject: sshd doesn't work after sshd-host-config - fix proposed

References: <1035402402 DOT 11030 DOT ezmlm AT cygwin DOT com>

I have spent time the last few days setting up sshd under Win2k and WinXP with privilege separation and it is clear from the maling lists that I have not been alone in my troubles...

The setup that fails:
* A clean install of cygwin from Internet (on seasoned Windows 2000 and a clean install of XP)
* Doing "ssh-host-config" and answering yes to all questions, enabling privlege separation
* Doing "ssh-user-config"
* Starting the "CYGWIN sshd" service
   It immediately stops and logs "Bad owner or mode for /var/empty" to /var/log/sshd.log

The one line that makes it work:
$ chmod 755 /var/empty
Just as /usr/doc/openssh/README.privsep says...

So the following (or a similar) "diff -u" should make sh-host-config work better for average joe and me:

--- ssh-host-config.orig        2002-10-23 14:24:04.000000000 +0200
+++ ssh-host-config     2002-10-23 14:23:49.000000000 +0200
@@ -164,6 +164,7 @@
   if [ $_nt -gt 0 ]
   then
     chown system.system /var/empty
+    chmod 755 /var/empty
   fi
 fi

Most problems/solutions I've seen so far have focussed on users and file ownership when what fails is the file privileges.
Because I'm no cygwin guru I just might be knocking down open doors with this one. In that case, bear with me :-)

    /Fredrik


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sources.redhat.com/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
X-Original-Recipient:	<cygwin AT cygwin DOT com>
Message-ID:	<3DB72881.92F362E1@biochem.kth.se>
Date:	Thu, 24 Oct 2002 00:53:53 +0200
From:	Fredrik Viklund <fredrikv AT biochem DOT kth DOT se>
X-Accept-Language:	en
MIME-Version:	1.0
To:	cygwin AT cygwin DOT com
Subject:	sshd doesn't work after sshd-host-config - fix proposed
References:	<1035402402 DOT 11030 DOT ezmlm AT cygwin DOT com>