| delorie.com/archives/browse.cgi | search |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sources.redhat.com/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
| X-Info: | This message was accepted for relay by |
| smtp03.mrf.mail.rcn.net as the sender used SMTP authentication | |
| X-Trace: | UmFuZG9tSVbfRJ3E8vaczDwRBfw4SV5riieId7AfiE/qQsjPhwT2PUtONh+IckgR |
| Message-ID: | <3F29C4F1.8010805@cygwin.com> |
| Date: | Thu, 31 Jul 2003 21:40:01 -0400 |
| From: | Larry Hall <cygwin-lh AT cygwin DOT com> |
| Reply-To: | cygwin AT cygwin DOT com |
| User-Agent: | Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4) Gecko/20030624 |
| X-Accept-Language: | en-us, en |
| MIME-Version: | 1.0 |
| To: | Myk Melez <myk AT aol DOT net> |
| CC: | cygwin AT cygwin DOT com |
| Subject: | Re: Administrator lacking super-user privileges on cygwin installation |
| References: | <3F299C67 DOT 1070700 AT aol DOT net> |
| In-Reply-To: | <3F299C67.1070700@aol.net> |
Myk Melez wrote:
> I have two machines with what look like identical cygwin installations
> on them, but the Administrator account on one of them doesn't have
> super-user privileges. This causes sshd not to have access to
> /home/some-user/.ssh (which is restricted to only "some-user") and thus
> prevents key-based authentication. Regular password-based
> authentication works, so the problem isn't sshd itself. Logging in as
> the Administrator and doing "ls /home/some-user/.ssh/*" gives me a
> "permission denied" error, which also confirms that the problem is with
> the permissions of the Administrator account and not sshd.
>
> The Administrator NT accounts (and Administrators NT groups) seem
> identical on the two machines, as are permissions for the C:\cygwin
> directory. Both systems had old cygwin installations on them that we
> blew away before installing the latest. What am I missing?
1. SYSTEM is the account that sshd runs as, not administrator. It's
the only default account that has permissions to switch user contexts
without authenticating the new user through Windows password mechanism
(for NT/W2K/XP).
2. Only the owner of the private key files in .ssh should have permissions
to access these files. Public key files should be readable by anyone.
You'll want to check the permissions on these files relative to the
above.
3. Generally, you should read <http://cygwin.com/problems.html>.
--
Larry Hall http://www.rfk.com
RFK Partners, Inc. (508) 893-9779 - RFK Office
838 Washington Street (508) 893-9889 - FAX
Holliston, MA 01746
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |