delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2015/06/09/20:43:34

X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:date:from:reply-to:to:message-id:subject
:mime-version:content-type:content-transfer-encoding; q=dns; s=
default; b=ZK7fWGKTNUglYiK2qO1Ad4vKlM6yRZY8ytmJJC1Fx/4jqihzpEVeS
UpS0KWE3Ctc2fTLL/7F3MZcoXUQ+glUBw0AnRIT38x+YuhrAS3IGBVy5PXh8B26g
Q/TADSli+zIenKrIe1NtbHivIqx5fNXo1sLSAB4rBZ4phEQc9WX8+0=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:date:from:reply-to:to:message-id:subject
:mime-version:content-type:content-transfer-encoding; s=default;
bh=MPJEMdX2hkzMbdHl9NdcR07ANUA=; b=EtfMzl3ZwjqXAzY9KrblHKU7rxrj
RpZp4lwj3jtTrsQQmBubzaOXXAb3EfsXuKDo8lmnPGEyxK2tvsz5YuT8+2nwUPRM
PAc8brCN//8nVFvypXGbLPvnkUoZG6QCoGsdasQ9/XySn7cp22BVqvI1JbV0G3Cc
c5/S2KGF4R+Ig+4=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=3.2 required=5.0 tests=AWL,BAYES_50,FREEMAIL_FROM,KAM_COUK,RCVD_IN_DNSWL_NONE autolearn=no version=3.3.2
X-HELO: nm16-vm5.bullet.mail.ir2.yahoo.com
Date: Wed, 10 Jun 2015 00:42:09 +0000 (UTC)
From: Marilo <narium85-mlscar AT yahoo DOT co DOT uk>
Reply-To: Marilo <narium85-mlscar AT yahoo DOT co DOT uk>
To: "cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com>
Message-ID: <666894691.15517.1433896929068.JavaMail.yahoo@mail.yahoo.com>
Subject: Re: can't change a file's permissions + some ssh
MIME-Version: 1.0
X-IsSubscribed: yes 

>On Jun  7 17:46, Marilo wrote: 
>> after some fiddling with ssh.. removing the service, removing keys, re-running ssh-host-config, I got this >error 
>> 
>> harvey AT samsung350 ~ 
>> $ tail /var/log/sshd.log 
>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ 
>> @         WARNING: UNPROTECTED PRIVATE KEY FILE!          @ 
>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ 
>> Permissions 0670 for '/etc/ssh_host_ed25519_key' are too open. 
>> It is required that your private key files are NOT accessible by others. 
>> This private key will be ignored. 
>> bad permissions: ignore key: /etc/ssh_host_ed25519_key 
>> Could not load host key: /etc/ssh_host_ed25519_key 
>> Disabling protocol version 2. Could not load host key 
>> sshd: no hostkeys available -- exiting. 
>> 
>> 
>> So I tried changing the file's permissions but I can't seem to change them 
>> 
>> harvey AT samsung350 ~ 
>> $ ls -l /etc/ssh_host_ed25519_key 
>> -rw-rwx---+ 1 cyg_server root 411 Jun  7 17:23 /etc/ssh_host_ed25519_key 
>> 
>> harvey AT samsung350 ~ 
>> $ chmod 600 /etc/ssh_* 
>> 
>> harvey AT samsung350 ~ 
>> $ ls -l /etc/ssh_host_ed25519_key 
>> -rw-rwx---+ 1 cyg_server root 411 Jun  7 17:23 /etc/ssh_host_ed25519_key 

>Note the extra permissions indicated by the trailing '+'.  Try 
>`setfacl -b /etc/ssh_host_ed25519_key'. 
>Corinna 


Thanks.. 

I reinstalled cygwin so as to update setfacl to include -b and then ran that command and then ssh works.

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019