delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2004/09/02/09:09:44

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
X-Originating-IP: [80.11.166.37]
X-Originating-Email: [shaddy_baddah AT hotmail DOT com]
X-Sender: shaddy_baddah AT hotmail DOT com
From: "Shaddy Baddah" <shaddy_baddah AT hotmail DOT com>
To: <cygwin AT cygwin DOT com>
Subject: Cygwin ssh session privileges differ from console privileges?
Date: Thu, 2 Sep 2004 15:09:03 +0200
MIME-Version: 1.0
Message-ID: <BAY15-DAV3KDaMyI4Y2000196e0@hotmail.com>
X-OriginalArrivalTime: 02 Sep 2004 13:09:18.0931 (UTC) FILETIME=[0E462230:01C490EE] 

Hi,

I am having a problem with the privileges on a Cygwin ssh session. It
seems as though the Cygwin ssh session does not have all the
privileges of a console session, logged in as the same user. This is
happening on cygwin v1.5.10-3 under Win2K SP4. The openssh version is
v3.9p1-1.

The problem occurred when I attempted to run Oracle sqlplus remotely,
for the purpose of doing database administration. Locally, there was
no problem running in either a command prompt or a cygwin prompt (the
same mechanism of course):

  Administrator AT myserver ~
  $ id -a
  uid=500(Administrator) gid=513(None) 
groups=0(root),513(None),544(Administrators),545(Users),1002(ORA_DBA)

  Administrator AT myserver ~
  $ sqlplus /nolog

  SQL*Plus: Release 9.2.0.1.0 - Production on Thu Sep 2 20:08:42 2004

  Copyright (c) 1982, 2002, Oracle Corporation.  All rights reserved.

  SQL> connect / as sysdba
  Connected.
  SQL>

However, the same is not true of the remote Cygwin ssh session:

  Administrator AT mydesktop ~
  $ ssh Administrator AT myserver
  Last login: Thu Sep  2 20:20:14 2004 from mydesktop

  Administrator AT myserver ~
  $ id -a
  uid=500(Administrator) gid=513(None) 
groups=0(root),513(None),544(Administrators),545(Users),1002(ORA_DBA)

  Administrator AT myserver ~
  $ sqlplus /nolog

  SQL*Plus: Release 9.2.0.1.0 - Production on Thu Sep 2 20:40:29 2004

  Copyright (c) 1982, 2002, Oracle Corporation.  All rights reserved.

  SQL> connect / as sysdba
  ERROR:
  ORA-01031: insufficient privileges

I would expect that they would be the same, but understand that there
might be quirks associated with sshd launching a login session as the
authenticated user. Is there a plausible explanation as to why there
is a difference?

Please note, I attempted this both with and without Cygwin sshd
privilege separation enabled. It made no difference.

Regards,
Shaddy

P.S. I am digest subscribed, but prefer direct replies. Thanks in
advance.

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019