delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2006/08/10/03:45:08

X-Spam-Check-By: sourceware.org
Date: Thu, 10 Aug 2006 09:03:53 +0200
From: cygwin-060809 AT cxxl DOT de
Message-ID: <1039663999.20060810090353@cxxl.de>
To: "Larry Hall (Cygwin)" <cygwin AT cygwin DOT com>
Subject: Re[2]: uid having logged in with ssh
In-Reply-To: <44DA42F7.8030102@cygwin.com>
References: <001c01c6bbee$47443220$35c94e98 AT CASSANDRA5> <44DA42F7 DOT 8030102 AT cygwin DOT com>
MIME-Version: 1.0
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

hi,

Wednesday, August 9, 2006, 10:17:59 PM, "Larry Hall (Cygwin)" wrote:

> Andy Keane wrote:
>> I am running sshd having set up the sshd service using ssh-host-config with
>> privilege separation and with sshd running as a server owned by the local
>> sshd_server user.
>> All is working fine and I can log in using my keys without the need for
>> passwords or without keys and using passwords.
>> My problem is that if I then try and run some processes after logging in
>> (specifically MPI ones) the system thinks I am the local sshd_server user
>> and not the person I wish to be.

>> Any ideas how I can get sshd working such that after log in I am really the
>> user I wish to be would be much appreciated.

> Patience. ;-)

i just want to add one more detail: i have the same setup with sshd.
plus, i use EFS (encrypting file system) on the sshd box.  now EFS
encrypts files ONLY for the user that writes them (and for so called
recovery agents, but they are set up globally and all EFS files are
decryptable for them), but not for all other users that may have
access to the files (based on the their file privileges).

so when i'm user X and log in through sshd, write some file and then
log on locally though a console, i can't read my own file, because the
file was encrypted for SvcCOPSSHD (the sshd user in my case).

i, too, would much appreciate a solution :)

-- 
/chris/



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019