Mail Archives: cygwin/2013/09/16/15:56:43

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2013/09/16/15:56:43

X-Recipient: archive-cygwin AT delorie DOT com

DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:mime-version:in-reply-to:references:date

:message-id:subject:from:to:content-type; q=dns; s=default; b=Tu

mvHV6PB5rt0jdTkIdjj+ZJItCu9UKrF7XnE4O8FJAkQRs6D7lGlw+ALZp+da4UAf

0xz8LKxKFFhELowBvBkZxLo0EgV8p4rRqbePMO90HRCk7CgcYmM/UfN/2Pqao889

8pjTsxIOtz/SidpMgwzOarf7DMy+JV6gLxrl70A0E=

DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:mime-version:in-reply-to:references:date

:message-id:subject:from:to:content-type; s=default; bh=B8rFtd0D

wJaLt1/DCI2bPOjDrKU=; b=ropKUohtvZ9vdOHf7LOEX78SqMyn9gotQ2+xlMBV

hQp8gB8erZWdBqUVK1M5dCSBzGAVb4k9pahSIchjnLCdgPkUmL8IzJBCOFKKUNNO

Cq03Rdaia9exYtYmnzgEM98mqQ/n54dieWupgJNr+TQxIMlN06zwHfJtGWgtyha9

WpA=

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Id: <cygwin.cygwin.com>

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sourceware.org/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

Authentication-Results: sourceware.org; auth=none

X-Virus-Found: No

X-Spam-SWARE-Status: No, score=0.3 required=5.0 tests=AWL,BAYES_50,FREEMAIL_FROM,KHOP_THREADED,NO_RELAYS autolearn=ham version=3.3.2

X-HELO: mail-vc0-f181.google.com

MIME-Version: 1.0

X-Received: by 10.220.145.132 with SMTP id d4mr28499124vcv.9.1379361385613; Mon, 16 Sep 2013 12:56:25 -0700 (PDT)

In-Reply-To: <52375AF0.6030600@cygwin.com>

References: <CAMhuX2BzMOmeLeJSUcsm8yMd4gw8THBiBG=+iorVgv1uDwveJQ AT mail DOT gmail DOT com> <CAMhuX2BoDhcVUyv_ba4jXC+Y0fX=Fa50OOFfzK_fBBQe9N=o-A AT mail DOT gmail DOT com> <5237373E DOT 1070905 AT cygwin DOT com> <CAMhuX2ALMEw+2D5_urYo_MPhbjvebROs5UAY4L0Gx1a0rAagSA AT mail DOT gmail DOT com> <523748CD DOT 5070205 AT cygwin DOT com> <CAMhuX2CvmLJs4c4HANjCXZBARzCRrrBe3L5dpsBTDqMrhXz+7Q AT mail DOT gmail DOT com> <523752B8 DOT 2010306 AT cygwin DOT com> <CAMhuX2CCzUvwqkpg7drPAohVbkL+rE-sLJbK0tk5v7pTT6Xh0A AT mail DOT gmail DOT com> <52375AF0 DOT 6030600 AT cygwin DOT com>

Date: Mon, 16 Sep 2013 15:56:25 -0400

Message-ID: <CAMhuX2D5sA_+D+J+UZw+NyA_ctGraO7AjU4DYPRSmXnugG_UQw@mail.gmail.com>

Subject: Re: Fwd: Way to test cyglsa?

From: Evan Rowley <rowley DOT evan AT gmail DOT com>

To: Andrey Repin <cygwin AT cygwin DOT com>

X-IsSubscribed: yes

The user cyg_server was generated by the ssh-host-config script and
while the server itself is on a domain, all the users involved with
cygwin / ssh / sshd are local users.

I've noticed that along with the local cyg_server account, there is
also a local sshd account. It appears to be disabled. Is that normal?

What can I do to be sure that seteuid can be called by cyg_server? The
user is in the Administrators group and to my knowledge, that should
be a qualifier to run seteuid.

I went ahead and reconfigured /etc/passwd, the sshd service via
ssh-host-config, and the LSA passwords for the users. I'm still
experiencing the same problem but now with a new and odd variation.
Attempting to connect via ssh yeilds the same result as before but
additionally causes the sshd service to stop. No errros are being
reported in the event logs and the /var/log/sshd.log file looks the
same as before. Output is below:

debug1: sshd version OpenSSH_6.2, OpenSSL 1.0.1e 11 Feb 2013
debug1: read PEM private key done: type RSA
debug1: private host key: #0 type 1 RSA
debug1: read PEM private key done: type DSA
debug1: private host key: #1 type 2 DSA
debug1: read PEM private key done: type ECDSA
debug1: private host key: #2 type 3 ECDSA
/var/empty must be owned by root and not group or world-writable.
debug1: sshd version OpenSSH_6.2, OpenSSL 1.0.1e 11 Feb 2013
debug1: read PEM private key done: type RSA
debug1: private host key: #0 type 1 RSA
debug1: read PEM private key done: type DSA
debug1: private host key: #1 type 2 DSA
debug1: read PEM private key done: type ECDSA
debug1: private host key: #2 type 3 ECDSA
debug1: rexec_argv[0]='/usr/sbin/sshd'
debug1: rexec_argv[1]='-D'
debug1: rexec_argv[2]='-d'
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
debug1: fd 4 clearing O_NONBLOCK
debug1: Server will not fork when running in debugging mode.
debug1: rexec start in 4 out 4 newsock 4 pipe -1 sock 7
debug1: inetd sockets after dupping: 3, 3
Connection from 127.0.0.1 port 3966
debug1: Client protocol version 2.0; client software version OpenSSH_6.2
debug1: match: OpenSSH_6.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.2
debug1: list_hostkey_types: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256 [preauth]
debug1: SSH2_MSG_KEXINIT sent [preauth]
debug1: SSH2_MSG_KEXINIT received [preauth]
debug1: kex: client->server aes128-ctr XXXXXXXXXXXXXX none [preauth]
debug1: kex: server->client aes128-ctr XXXXXXXXXXXXXX none [preauth]
debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth]
debug1: SSH2_MSG_NEWKEYS sent [preauth]
debug1: expecting SSH2_MSG_NEWKEYS [preauth]
debug1: SSH2_MSG_NEWKEYS received [preauth]
debug1: KEX done [preauth]
debug1: userauth-request for user sftp_user service ssh-connection
method none [preauth]
debug1: attempt 0 failures 0 [preauth]
Address 127.0.0.1 maps to XXXXXXXXXXXXXX, but this does not map back
to the address - POSSIBLE BREAK-IN ATTEMPT!
debug1: userauth-request for user sftp_user service ssh-connection
method publickey [preauth]
debug1: attempt 1 failures 0 [preauth]
debug1: test whether pkalg/pkblob are acceptable [preauth]
debug1: temporarily_use_uid: 1019/513 (e=1006/513)
seteuid 1019: Operation not permitted
debug1: do_cleanup
debug1: Killing privsep child 1344
debug1: sshd version OpenSSH_6.2, OpenSSL 1.0.1e 11 Feb 2013
debug1: read PEM private key done: type RSA
debug1: private host key: #0 type 1 RSA
debug1: read PEM private key done: type DSA
debug1: private host key: #1 type 2 DSA
debug1: read PEM private key done: type ECDSA
debug1: private host key: #2 type 3 ECDSA
debug1: rexec_argv[0]='/usr/sbin/sshd'
debug1: rexec_argv[1]='-D'
debug1: rexec_argv[2]='-d'
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
debug1: fd 4 clearing O_NONBLOCK
debug1: Server will not fork when running in debugging mode.
debug1: rexec start in 4 out 4 newsock 4 pipe -1 sock 7
debug1: inetd sockets after dupping: 3, 3
Connection from 127.0.0.1 port 4030
debug1: Client protocol version 2.0; client software version OpenSSH_6.2
debug1: match: OpenSSH_6.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.2
debug1: list_hostkey_types: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256 [preauth]
debug1: SSH2_MSG_KEXINIT sent [preauth]
debug1: SSH2_MSG_KEXINIT received [preauth]
debug1: kex: client->server aes128-ctr XXXXXXXXXXXXXX none [preauth]
debug1: kex: server->client aes128-ctr XXXXXXXXXXXXXX none [preauth]
debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth]
debug1: SSH2_MSG_NEWKEYS sent [preauth]
debug1: expecting SSH2_MSG_NEWKEYS [preauth]
debug1: SSH2_MSG_NEWKEYS received [preauth]
debug1: KEX done [preauth]
debug1: userauth-request for user sftp_user service ssh-connection
method none [preauth]
debug1: attempt 0 failures 0 [preauth]
Address 127.0.0.1 maps to XXXXXXXXXXXXXX, but this does not map back
to the address - POSSIBLE BREAK-IN ATTEMPT!
debug1: userauth-request for user sftp_user service ssh-connection
method publickey [preauth]
debug1: attempt 1 failures 0 [preauth]
debug1: test whether pkalg/pkblob are acceptable [preauth]
debug1: temporarily_use_uid: 1019/513 (e=1006/513)
seteuid 1019: Operation not permitted
debug1: do_cleanup
debug1: Killing privsep child 4340

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

X-Recipient:	archive-cygwin AT delorie DOT com
DomainKey-Signature:	a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:content-type; q=dns; s=default; b=Tu
	mvHV6PB5rt0jdTkIdjj+ZJItCu9UKrF7XnE4O8FJAkQRs6D7lGlw+ALZp+da4UAf
	0xz8LKxKFFhELowBvBkZxLo0EgV8p4rRqbePMO90HRCk7CgcYmM/UfN/2Pqao889
	8pjTsxIOtz/SidpMgwzOarf7DMy+JV6gLxrl70A0E=
DKIM-Signature:	v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:content-type; s=default; bh=B8rFtd0D
	wJaLt1/DCI2bPOjDrKU=; b=ropKUohtvZ9vdOHf7LOEX78SqMyn9gotQ2+xlMBV
	hQp8gB8erZWdBqUVK1M5dCSBzGAVb4k9pahSIchjnLCdgPkUmL8IzJBCOFKKUNNO
	Cq03Rdaia9exYtYmnzgEM98mqQ/n54dieWupgJNr+TQxIMlN06zwHfJtGWgtyha9
	WpA=
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Authentication-Results:	sourceware.org; auth=none
X-Virus-Found:	No
X-Spam-SWARE-Status:	No, score=0.3 required=5.0 tests=AWL,BAYES_50,FREEMAIL_FROM,KHOP_THREADED,NO_RELAYS autolearn=ham version=3.3.2
X-HELO:	mail-vc0-f181.google.com
MIME-Version:	1.0
X-Received:	by 10.220.145.132 with SMTP id d4mr28499124vcv.9.1379361385613; Mon, 16 Sep 2013 12:56:25 -0700 (PDT)
In-Reply-To:	<52375AF0.6030600@cygwin.com>
References:	<CAMhuX2BzMOmeLeJSUcsm8yMd4gw8THBiBG=+iorVgv1uDwveJQ AT mail DOT gmail DOT com> <CAMhuX2BoDhcVUyv_ba4jXC+Y0fX=Fa50OOFfzK_fBBQe9N=o-A AT mail DOT gmail DOT com> <5237373E DOT 1070905 AT cygwin DOT com> <CAMhuX2ALMEw+2D5_urYo_MPhbjvebROs5UAY4L0Gx1a0rAagSA AT mail DOT gmail DOT com> <523748CD DOT 5070205 AT cygwin DOT com> <CAMhuX2CvmLJs4c4HANjCXZBARzCRrrBe3L5dpsBTDqMrhXz+7Q AT mail DOT gmail DOT com> <523752B8 DOT 2010306 AT cygwin DOT com> <CAMhuX2CCzUvwqkpg7drPAohVbkL+rE-sLJbK0tk5v7pTT6Xh0A AT mail DOT gmail DOT com> <52375AF0 DOT 6030600 AT cygwin DOT com>
Date:	Mon, 16 Sep 2013 15:56:25 -0400
Message-ID:	<CAMhuX2D5sA_+D+J+UZw+NyA_ctGraO7AjU4DYPRSmXnugG_UQw@mail.gmail.com>
Subject:	Re: Fwd: Way to test cyglsa?
From:	Evan Rowley <rowley DOT evan AT gmail DOT com>
To:	Andrey Repin <cygwin AT cygwin DOT com>
X-IsSubscribed:	yes