X-Recipient: archive-cygwin@delorie.com
X-Spam-Check-By: sourceware.org
To: cygwin@cygwin.com
From: =?ISO-8859-1?Q?Ren=E9_Berber?= <r.berber@computer.org>
Subject:  Re: sshd [5.1p1] fails on seteuid "permission denied"
Date:  Tue, 05 Aug 2008 22:57:01 -0500
Lines: 45
Message-ID: <g7b7ed$adj$1@ger.gmane.org>
References:  <20080805232342.GA13172@panix.com> <g7aohl$aee$1@ger.gmane.org> <20080806022849.GA9492@panix.com>
Mime-Version:  1.0
Content-Type:  text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding:  quoted-printable
User-Agent: Thunderbird 2.0.0.16 (Windows/20080708)
In-Reply-To: <20080806022849.GA9492@panix.com>
X-IsSubscribed: yes
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie.com@cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com

J.D. Baldwin wrote:

> On Tue, Aug 05, 2008 at 06:42:46PM -0500, Ren=E9 Berber wrote:
>> [snip]
>>> I can invoke /usr/sbin/sshd but not log in via same.  I have tried it
>>> with and without privilege separation, with and without re-exec and in
>>> various other permutations.  It always fails on the seteuid call.
>> [snip]
>>> I can't find a workaround for this.  Any ideas?
>> [snip]
>>
>> Read the instructions inside: /usr/share/doc/Cygwin/openssh.README
>=20
> If you're referring to the ssh-host-config run, I've done that six
> times, with (I think) every reasonable combination of answers to the
> config questions.  Also ssh-user-config, though that's much less
> relevant here.

Once probably was enough, if that didn't work you should try to solve=20
that problem not just test randomly.

> If you're referring to something else, I wish you'd give me more of a
> hint.  Otherwise, I might think the above is a lot like the "you're
> not doing it right" non-answers I found when searching on the error
> message.

The problem you describe is clear and it means you went with a different=20
kind of installation and are guessing that user Administrator can do=20
anything, it can't.

The ssh-host-config script adds a user with the required privileges and=20
sets up everything so that the process can switch users.  That last=20
operation is what you showed as failure on your debug output.

The service installation script works fine on Windows XP but you started=20
your message saying that there are "numerous reports" like yours, which=20
is not true, if you read those reports they are always for Server=20
2003/2008, Vista or some interference by Virus scanners/Internet=20
security software.
--=20
Ren=E9 Berber


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/