delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2006/02/28/16:27:27

X-Spam-Check-By: sourceware.org
Date: Tue, 28 Feb 2006 16:26:35 -0500 (EST)
From: Igor Peshansky <pechtcha AT cs DOT nyu DOT edu>
Reply-To: cygwin AT cygwin DOT com
To: Damian Sobieralski <dsobiera AT asu DOT edu>
cc: cygwin AT cygwin DOT com
Subject: Re: OpenSSH for Non Administrators
In-Reply-To: <18050B668B2B784DB0A083D65ED5287F011E52B7@EX01.asurite.ad.asu.edu>
Message-ID: <Pine.GSO.4.63.0602281623070.13972@access1.cims.nyu.edu>
References: <18050B668B2B784DB0A083D65ED5287F011E52B7 AT EX01 DOT asurite DOT ad DOT asu DOT edu>
MIME-Version: 1.0
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com 

On Tue, 28 Feb 2006, Damian Sobieralski wrote:

> My apologies if this has asked before.  I researched as much as I could
> on my own. I hope a kind soul can direct me to a useful resource.
>
>  I installed Cygwin on a Windows 2003 Server with OpenSSH 4.2p1-1.
> After installing I ran ssh-host-config and chose privilege separation.
>
> "privilege separation" -> Yes
> "create local user sshd_server" -> Yes
> "install sshd as a service" -> Yes
> CYGWIN="  -> ntsec
>
>  I synced the users and passwords with:
>
> mkpasswd   --local   >   /etc/passwd
> mkgroup   --local    >   /etc/group

I'm guessing this is your problem right here.  Which user did you do this
as?  If you did this as yourself, it could be that these files are only
readable by the Administrators group, which explains why those users can
log in.  Either those, or some other file needed for the login...
Perhaps the shell (/bin/sh or /bin/bash)?

What does "ls -l /etc/{passwd,group} /bin/sh /bin/bash" print?

>  Now the weird thing is that I am able to log in (ssh in).  I'm part of
> the administrator group.  I set up another user as a "normal" user and
> they are not able to authenticate and get in.  If I promote this user to
> be part of the administrator group he/she is able to get in.
>
>  I read this thread and noticed a poster stated if one read the readme
> in /usr/share/doc/Cygwin that this should cover all I need to know.  I
> did read it and I am not seeing where I made the mistake.  Can anyone
> assist me on where I am making a mistake?
>
> http://www.cygwin.com/ml/cygwin/2005-10/msg01043.html

It would also help if you followed

> Problem reports:       http://cygwin.com/problems.html

just in case you have some other peculiarity on your system.
HTH,
	Igor
-- 
				http://cs.nyu.edu/~pechtcha/
      |\      _,,,---,,_	    pechtcha AT cs DOT nyu DOT edu | igor AT watson DOT ibm DOT com
ZZZzz /,`.-'`'    -.  ;-;;,_		Igor Peshansky, Ph.D. (name changed!)
     |,4-  ) )-,_. ,\ (  `'-'		old name: Igor Pechtchanski
    '---''(_/--'  `-'\_) fL	a.k.a JaguaR-R-R-r-r-r-.-.-.  Meow!

"Las! je suis sot... -Mais non, tu ne l'es pas, puisque tu t'en rends compte."
"But no -- you are no fool; you call yourself a fool, there's proof enough in
that!" -- Rostand, "Cyrano de Bergerac"

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019