X-Recipient: archive-cygwin@delorie.com X-Spam-Check-By: sourceware.org Message-ID: <48EBBDCA.5050804@millbrookprinting.com> Date: Tue, 07 Oct 2008 15:51:38 -0400 From: Karl Herrick User-Agent: Thunderbird 2.0.0.17 (X11/20080914) MIME-Version: 1.0 To: cygwin@cygwin.com Subject: openssh 5.1p1-3 / ssh-host-config dependency and permission issues Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Delivered-To: mailing list cygwin@cygwin.com The scope of this post is have an OpenSSH server running on top of Windows XP Professional without dependency errors or permission issues during the setup. On 2008-06-28 a system was installed from scratch with the following specs: Windows XP Professional SP2 setup.exe 2.573.2.2 OpenSSH 4.7p1-2 and the associated dependencies Today when trying to build a similar system, Windows XP Professional SP3 setup.exe 2.573.2.3 OpenSSH 5.1p1-3 and the associated dependencies two problems are encountered: 1. An error is received in regard to diffutils not being installed when running ssh-host-config: *** ERROR: Could not find or execute required program cmp. *** ERROR: Please install diffutils 2. Various permission errors arise while running ssh-host-config: *** Warning: The file /etc/passwd is not readable by all. *** Warning: Please run 'chmod +r /etc/passwd'. *** Warning: The file /etc/group is not readable by all. *** Warning: Please run 'chmod +r /etc/group'. *** ERROR: Problem with LocalSystem or Adminstrator IDs and separately after rerunning ssh-host-config: *** Warning: The permissions on the directory /var are not correct. *** Warning: They must match the regexp d..x..x..[xt] *** ERROR: Problem with /var directory. Exiting. Four questions: 1. Should diffutils automatically be installed as a dependency of openssh so that this error doesn't come up in regard to it not being installed while running ssh-host-config? 2. Should these permissions be different on a default cygwin install so that openssh can be installed and ssh-host-config can be executed without permission errors? 3. Is it safe to make the necessary permission changes to the various files and directores (/etc/passwd, /etc/group, and /var) that openssh is requesting changes to in order to "force" it to work? 4. If indeed these issues are due to a bug, are there appropriate places to file necessary bug reports in order to keep track of if/when they will be resolved? Thanks for your time and consideration of these issues that have been noticed. --- Reproduce steps: 1. Download setup.exe version 2.573.2.3 and place into "C:\cygwin-install\". 2. Go through the setup wizard with defaults except: 2.a Select a mirror. 2.b Click once on the "Net/openssh" package (at the time of this post it indicates it will install version 5.1p1-3 and the associated dependencies). 3. Execute "C:\cygwin\Cygwin.bat". 4. Within the newly launched shell, execute "ssh-host-config". The following is returned: ###################### $ ssh-host-config *** Info: Generating /etc/ssh_host_key *** Info: Generating /etc/ssh_host_rsa_key *** Info: Generating /etc/ssh_host_dsa_key *** ERROR: Could not find or execute required program cmp. *** ERROR: Please install diffutils ###################### 5. Close the shell and launch "C:\cygwin-install\setup.exe". 6. Go through the setup wizard with defaults except: 6.a Click once on the "Utils/diffutils" package (at the time of this post it indicates it will install version 2.8.7-1 and the associated dependencies). 7. Execute "C:\cygwin\Cygwin.bat". 8. Within the newly launched shell, execute "ssh-host-config". 9. Answer "yes" to the "Should privilege separation be used? (yes/no)" query. The following is returned: ###################### *** Warning: The file /etc/passwd is not readable by all. *** Warning: Please run 'chmod +r /etc/passwd'. *** Warning: The file /etc/group is not readable by all. *** Warning: Please run 'chmod +r /etc/group'. *** ERROR: Problem with LocalSystem or Adminstrator IDs ###################### 10. Within the shell, exectue "chmod +r /etc/passwd". 11. Within the shell, exectue "chmod +r /etc/group". 12. Within the shell, execute "ssh-host-config". 13. Answer "yes" to the "Overwrite existing /etc/ssh_config file? (yes/no)" query. 14. Answer "yes" to the "Overwrite existing /etc/sshd_config file? (yes/no)" query. 15. Answer "yes" to the "Should privilege separation be used? (yes/no)" query. The following is returned: ###################### *** Warning: The permissions on the directory /var are not correct. *** Warning: They must match the regexp d..x..x..[xt] *** ERROR: Problem with /var directory. Exiting. ###################### 16. Within the shell, execute "ls -ld /var" The following is returned: ###################### drwxrwx---+ 8 ladmin Users 0 Oct 7 11:38 /var ###################### 17. Within the shell, execute "chmod o+x /var" 18. Within the shell, execute "ssh-host-config". 19. Answer "yes" to the "Overwrite existing /etc/ssh_config file? (yes/no)" query. 20. Answer "yes" to the "Overwrite existing /etc/sshd_config file? (yes/no)" query. 21. Answer "yes" to the "Should privilege separation be used? (yes/no)" query. 22. Answer "yes" to the "new local account 'sshd'? (yes/no)" query. 23. Answer "yes" to the "Do you want to install sshd as a service? (Say "no" if it is already installed as a service) (yes/no)" query. 24. Press the "Enter" key in regard to the "Enter the value of CYGWIN for the daemon: [ntsec]" query. 25. Within the shell, execute "cygrunsrv -S sshd" 26. Completing the setup via "ssh-user-config" etc... -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/