| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| X-Spam-Check-By: | sourceware.org |
| Message-ID: | <47A365E5.8020702@cygwin.com> |
| Date: | Fri, 01 Feb 2008 13:33:09 -0500 |
| From: | "Larry Hall (Cygwin)" <reply-to-list-only-lh AT cygwin DOT com> |
| Reply-To: | cygwin AT cygwin DOT com |
| User-Agent: | Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.3) Gecko/20070505 Remi/2.0.0.0-3.fc4.remi Thunderbird/2.0.0.0 Mnenhy/0.7.5.0 |
| MIME-Version: | 1.0 |
| To: | cygwin AT cygwin DOT com |
| Subject: | Re: OPENSSH passwordless login getting "system error 59" on "net use" cmd with samba |
| References: | <004e01c864fd$1172f870$0302a8c0 AT r00jao4> |
| In-Reply-To: | <004e01c864fd$1172f870$0302a8c0@r00jao4> |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
Terry Orechia wrote: > Hi, > > I was able to resolve this issue by switching the user who runs the sshd > service. If anyone else is having this problem you can find detailed > documentation on how to do get around this issue this at > http://ist.uwaterloo.ca/~kscully/CygwinSSHD_W2K3.html. > Some words of caution here: The procedure outlined with the domain user as the user the service will run as gives the domain user advanced privileges which encompass those of SYSTEM (on <W2K3 machines) and sshd_server. This opens a wider security hole than just using SYSTEM (on <W2K3 machine) or sshd_server as the service user. If you don't need the ability to let others login via 'ssh' to the system in question, you are better off to not alter your user's permissions at all. You should still be able to login as yourself and gain access to your network shares. By doing this, you won't be opening up the security hole but others trying to log in will run in your user context in your case. See <http://cygwin.com/faq/faq-nochunks.html#faq.using.shares> for more details. -- Larry Hall http://www.rfk.com RFK Partners, Inc. (508) 893-9779 - RFK Office 216 Dalton Rd. (508) 893-9889 - FAX Holliston, MA 01746 _____________________________________________________________________ A: Yes. > Q: Are you sure? >> A: Because it reverses the logical flow of conversation. >>> Q: Why is top posting annoying in email? -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |