X-Recipient:	archive-cygwin AT delorie DOT com
DomainKey-Signature:	a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:from:subject:to:message-id:date:mime-version
	:content-type:content-transfer-encoding; q=dns; s=default; b=yMu
	qKb7xXMw6+BY3FC5L4NOEl2SjbNmbPS5uN0H5YVvKjcZZx+R5+YYcUzL6tYPvH9+
	YX4LRkZTlsT3X2dShmlZ84ZcZwKlWJjtC715tXQKGRS5CtSFiQzTo68b3SGyuwpP
	YIBYK2n9fyLWxTufHGOjK6mBcbQtEa/lVxDlQ5cM=
DKIM-Signature:	v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:from:subject:to:message-id:date:mime-version
	:content-type:content-transfer-encoding; s=default; bh=2r76x0Bqq
	EK+BuriON/TWZ/R6NE=; b=n6/eZPXYJMXFfJICaO7RJAofwBoAGg4GgcoLb8Zxn
	+fs2JyxPauS/ZHES/22+zt9LLD24Rii/6tamqM0ToZ9WxVdb6xIUJXXUeLHojKZg
	wpSZBGem0PM8KcBkj6mrUPaIY97y6mZ6KUikV3JYfbNY2lDqzmdjUONp6NoFJjTP
	cA=
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Authentication-Results:	sourceware.org; auth=none
X-Virus-Found:	No
X-Spam-SWARE-Status:	Yes, score=6.2 required=5.0 tests=AWL,BAYES_50,RCVD_IN_DNSWL_NONE,SPAM_BODY,SPF_PASS autolearn=no version=3.3.2 spammy=inbound, nuts, routed, wifi
X-HELO:	smtp-out-5.talktalk.net
X-Spam:	0
X-OAuthority:	v=2.2 cv=dsCZMBo4 c=1 sm=1 tr=0 a=dHvrRG0tPyWZVY3ihLdgmA==:117 a=dHvrRG0tPyWZVY3ihLdgmA==:17 a=IkcTkHD0fZMA:10 a=HKZ1E4KacRkQEvTr7osA:9 a=QEXdDO2ut3YA:10
From:	mike <mikereape AT onetel DOT com>
Subject:	sshd and PuTTY and Windows firewall
To:	"cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com>
Message-ID:	<c02dd764-289a-af6f-2bfb-6f3f67edcfb7@onetel.com>
Date:	Sat, 7 Jan 2017 19:06:31 +0000
User-Agent:	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.6.0
MIME-Version:	1.0
X-CMAE-Envelope:	MS4wfJ8rgs8K6CAhNECePQ0833LcLYYgXEKT8b4G3RRVyVq7Oslby5mFUh3S3R9KrJ+vYjjAQBF99ymDkR8YQuLZfJmpwORurw2jBRUWy9L8tXcuY2ZV5WAM woQ+Bvt9kstxkGPFjumf3NPLHrO1c7MVanWi7PYhe4DGSorW68TYCx8w
X-IsSubscribed:	yes

Hi

First I'm using the Windows firewall in Windows 7 on a laptop and it is 
switched on.

I'm not sure whether this is a Cygwin question or not but I don't know 
where else to ask and it's driving me nuts.  If I use the PuTTY app to 
connect to 192.168.1.100 it connects (where 192.168.1.100 is the local 
address behind and through my router). (Using Cygwin ssh 192.168.1.100 
fails because of host key problems but that's a different issue.)  So 
surely (he says) if I can use PuTTY to connect to the Cygwin sshd server 
at 192.168.1.100 then the connection is routed through my router and is 
not local to the machine as in loopback with ssh localhost in that 
sense.  However if I open the Windows Firewall with Advanced Security 
dialogue I cannot find any Windows firewall inbond rules that allow 
Cygwin SSH through (or anything similar).  The domain, private and 
public profiles all say "Inbound connections that do not match a rule 
are blocked".  Therefore the inbound connection through my router should 
be blocked.

I'm worried that I might have a security hole somewhere.  I don't want 
sshd open to the world just local to other machines on my local network 
(behind the router).  This is a concern because since the machine is a 
laptop I might connect to the net with wifi in a coffee shop for example.

Can someone give me a clue as to what's going on please?  What am I 
looking for?  i'm sure I must just be missing the obvious.

Thanks very much in advance

Mike



--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -