Mail Archives: cygwin/2016/02/09/02:53:36

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2016/02/09/02:53:36

X-Recipient: archive-cygwin AT delorie DOT com

DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:to:from:subject:date:message-id:references

:mime-version:content-type:content-transfer-encoding; q=dns; s=

default; b=Cy8cfeGTZTCMS5ZtGDxGIAXo3uoLpCbGixnx4aabcDD3RH6T9wSMr

OoKiriMXIntxqIyeo4Lxoab/zDCl595BDakAYWglqsRV5nK3k7tiTKkxI/P0OQSv

dy82uS+AuzbUij4iZ2YVvqxXwztVUz4y5h8qWBjC3RSGBdGBDsThL0=

DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:to:from:subject:date:message-id:references

:mime-version:content-type:content-transfer-encoding; s=default;

bh=ifr/aN/ukrBzSOGBSMzSrHBFJ4g=; b=Lf1nf7o088ZvOFk8uQLrmevSx/0w

SlomZ6O4ZKdOWybyl35NOcXK9ees2SfN9IvqfflA57ACYsbulhh+jNWgbkM3WjiS

/FyWW1juqiXGLyoVmh2LRxItZmkhF3+ce7fv84drHx8wS6Qh0WIFwnvHGDecd5fO

0puHBPI/sz/Ay50=

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Id: <cygwin.cygwin.com>

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sourceware.org/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

Authentication-Results: sourceware.org; auth=none

X-Virus-Found: No

X-Spam-SWARE-Status: No, score=1.9 required=5.0 tests=AWL,BAYES_50,FSL_HELO_BARE_IP_2,RCVD_IN_DNSWL_LOW,RCVD_NUMERIC_HELO,RP_MATCHES_RCVD,SPF_HELO_PASS,SPF_PASS autolearn=no version=3.3.2 spammy=Hx-languages-length:1114, Willis, cygwin-ug-net, willis

X-HELO: plane.gmane.org

To: cygwin AT cygwin DOT com

From: Achim Gratz <Stromeko AT NexGo DOT DE>

Subject: Re: Possible Security Hole in SSHD w/ CYGWIN?

Date: Tue, 9 Feb 2016 07:52:58 +0000 (UTC)

Lines: 21

Message-ID: <loom.20160209T084758-211@post.gmane.org>

References: <016c01d16305$252c94c0$6f85be40$@comcast.net>

Mime-Version: 1.0

User-Agent: Loom/3.14 (http://gmane.org/)

X-IsSubscribed: yes

David Willis <david_willis <at> comcast.net> writes:
> To reproduce, connect via SSH (from either a Linux or CYGWIN/Windows client)
> to a CYGWIN-based SSHD server using a normal privileged user account (an
> account preferably that is not an admin either on the client or server
> machine). Once connected to the Windows SSHD server, CD to a UNC path of a
> network share. Once CD'd to that path, check Computer Management on that
> server, and go to Shares->Open Sessions, and you will see that the user
> connected is the privileged SSHD server account (and it will obviously show
> as being connected from the machine you are SSH'd into).

Did you read https://cygwin.com/cygwin-ug-net/ntsec.html, configured sshd
and the user accounts correctly and are logging in with a password using
either of the methods described?

FWIW, I'm seeing the connected user as the one that I logged into via ssh. 
In fact the sshd user account doesn't have any network access rights anyway,
so I couldn't connect to any network share if that acount would be used.

Regards,
Achim.

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

X-Recipient:	archive-cygwin AT delorie DOT com
DomainKey-Signature:	a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:to:from:subject:date:message-id:references
	:mime-version:content-type:content-transfer-encoding; q=dns; s=
	default; b=Cy8cfeGTZTCMS5ZtGDxGIAXo3uoLpCbGixnx4aabcDD3RH6T9wSMr
	OoKiriMXIntxqIyeo4Lxoab/zDCl595BDakAYWglqsRV5nK3k7tiTKkxI/P0OQSv
	dy82uS+AuzbUij4iZ2YVvqxXwztVUz4y5h8qWBjC3RSGBdGBDsThL0=
DKIM-Signature:	v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:to:from:subject:date:message-id:references
	:mime-version:content-type:content-transfer-encoding; s=default;
	bh=ifr/aN/ukrBzSOGBSMzSrHBFJ4g=; b=Lf1nf7o088ZvOFk8uQLrmevSx/0w
	SlomZ6O4ZKdOWybyl35NOcXK9ees2SfN9IvqfflA57ACYsbulhh+jNWgbkM3WjiS
	/FyWW1juqiXGLyoVmh2LRxItZmkhF3+ce7fv84drHx8wS6Qh0WIFwnvHGDecd5fO
	0puHBPI/sz/Ay50=
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Authentication-Results:	sourceware.org; auth=none
X-Virus-Found:	No
X-Spam-SWARE-Status:	No, score=1.9 required=5.0 tests=AWL,BAYES_50,FSL_HELO_BARE_IP_2,RCVD_IN_DNSWL_LOW,RCVD_NUMERIC_HELO,RP_MATCHES_RCVD,SPF_HELO_PASS,SPF_PASS autolearn=no version=3.3.2 spammy=Hx-languages-length:1114, Willis, cygwin-ug-net, willis
X-HELO:	plane.gmane.org
To:	cygwin AT cygwin DOT com
From:	Achim Gratz <Stromeko AT NexGo DOT DE>
Subject:	Re: Possible Security Hole in SSHD w/ CYGWIN?
Date:	Tue, 9 Feb 2016 07:52:58 +0000 (UTC)
Lines:	21
Message-ID:	<loom.20160209T084758-211@post.gmane.org>
References:	<016c01d16305$252c94c0$6f85be40$@comcast.net>
Mime-Version:	1.0
User-Agent:	Loom/3.14 (http://gmane.org/)
X-IsSubscribed:	yes