Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Message-ID:	<41247EBA.9040002@childresslaw.net>
Date:	Thu, 19 Aug 2004 05:19:38 -0500
From:	Mike Skallas <mskallas AT childresslaw DOT net>
User-Agent:	Mozilla Thunderbird 0.7.1 (Windows/20040626)
MIME-Version:	1.0
To:	cygwin AT cygwin DOT com
Subject:	RE: sshd automatically close connection after successful login

I had this same problem when I re-installed cygwin today. Took me a good 
hour to figure out what the hell was going on.

It seems that this version of sshd/openssh and its config script asks 
you if you want to run something called privilege separation.  If you 
run the script like so:


"ssh-host-config   -y"

you are saying, "Yes! Lets run in paranoid privilege separation mode!"

Instead just run this, thus avoiding saying "yes" to every question in 
the script:

"ssh-host-config"

And tell it NO when it asks about privilege separation.

I tried to get privsec working, and my machine already had an sshd user 
account, but no dice and I got sick of playing with it for maginal gains 
in an unlikely security scenario.

If you want you can read about privsec here:

http://www.citi.umich.edu/u/provos/ssh/privsep.html

but for us users who just need a simple sshd setup for a little remote 
access and some port forwarding it doesn't seem worth implementing.

-- 
Mike
Block Banner Ads Now
http://everythingisnt.com/hosts.html



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -