X-Spam-Check-By: sourceware.org
To: cygwin@cygwin.com
From: Andrew DeFaria <Andrew@DeFaria.com>
Subject:  Re: inetd help
Date:  Sun, 16 Jul 2006 10:07:11 -0700
Lines: 28
Message-ID: <e9drnv$fup$1@sea.gmane.org>
References:  <03D3B32F0D0D024791C1EE97D087E90907779E66@EXCH01.purdue.lcl> <20060714140557.GJ8759@calimero.vinschen.de> <loom.20060716T183153-524@post.gmane.org>
Mime-Version:  1.0
Content-Type:  text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding:  7bit
User-Agent: Thunderbird 1.5.0.4 (Windows/20060516)
In-Reply-To: <loom.20060716T183153-524@post.gmane.org>
X-IsSubscribed: yes
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
Precedence: bulk
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie.com@cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com

Robert McGraw wrote:
> Thanks Corinna and the gmane.os.cygwin group. I got my service running from the above help.
>
> I am not a window type guy and so have a few question on what I did:
>
> What make sshd_server account so special? I looked through the ssh-host-script where it creates the sshd_server. Is it the SID S-1-5-32-544, which I know nothing about. Or could any user in the administrator group do the same.
>
> If I wanted to create my own -u user, rather then the sshd_server user, what special settings would be required or is that I have a password set for this user which inetd uses?
>   
I think it's the following section:

            editrights -a SeAssignPrimaryTokenPrivilege -u sshd_server &&
            editrights -a SeCreateTokenPrivilege -u sshd_server &&
            editrights -a SeDenyInteractiveLogonRight -u sshd_server &&
            editrights -a SeDenyNetworkLogonRight -u sshd_server &&
            editrights -a SeDenyRemoteInteractiveLogonRight -u 
sshd_server &&
            editrights -a SeIncreaseQuotaPrivilege -u sshd_server &&
            editrights -a SeServiceLogonRight -u sshd_server &&
            sshd_server_got_all_rights="yes"

which bestows the necessary rights to the sshd_server user.

-- 

Andrew DeFaria <http://defaria.com>
I think there is a world market for maybe five computers. - Thomas J. 
Watson, chairman of IBM, 1943


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/