X-Recipient: archive-cygwin@delorie.com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:content-type:mime-version:subject:from :in-reply-to:date:content-transfer-encoding:message-id :references:to; q=dns; s=default; b=QU3zHM2AXnKb0pGJT5vPP+VjTZAg nwUCBBCx/FpvsGwg3xVdU+vPF6qK7W4yHCIt8w6WN+XPicd0r0FwzcvUP38wakQG n5jlqRMqSct0jdipwyYN9C2ZBvCDx9krtooWhcXY3IzVHGWj02V6RcTzEfug1I/V ZBz7s+p35m93FTA= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:content-type:mime-version:subject:from :in-reply-to:date:content-transfer-encoding:message-id :references:to; s=default; bh=Dg+VEMzmDupX5DjyqbrlVTazPD0=; b=QM a/L6o2MNu+kOIdZNxVYipn6KyFe7nitPah5hvgge4npE8JHDMqifFHGuZGn583m6 jRqsMC06SXTyLMNMOyOrsq48b3nTFhDsESr/1WxAItriTooPeJ6codUT0FSDN6uf toqAMU6JOvyccWOCvpAldCnGKdBZX/x1fHtGP+oYg= Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Delivered-To: mailing list cygwin@cygwin.com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=2.2 required=5.0 tests=AWL,BAYES_50,KAM_LAZY_DOMAIN_SECURITY,RP_MATCHES_RCVD autolearn=no version=3.3.2 spammy=Hx-languages-length:1233, H*MI:sk:8326.14, D*franz.com, connections X-HELO: etr-usa.com Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) Subject: Re: can't get sshd to new Windows 2012 R2 Server to work From: Warren Young In-Reply-To: <8326.1458081313@freon.franz.com> Date: Wed, 16 Mar 2016 11:54:00 -0600 Message-Id: <23AF39FC-9562-4AFE-8F13-664EA90D4312@etr-usa.com> References: <8326.1458081313@freon.franz.com> To: The Cygwin Mailing List X-IsSubscribed: yes Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by delorie.com id u2GHsKr8029745 On Mar 15, 2016, at 4:35 PM, Kevin Layer wrote: > > Cygwin Configuration Diagnostics Next time, please *attach* this, don’t paste it inline. (That’s not my idiosyncratic preference, it’s part of the instructions: https://cygwin.com/problems.html) > Running in Terminal Service session You say you disabled the firewall on the machine you’re working with, but have you disabled the firewall on the TS host, too? Truncated SSH sessions feel like some sort of security thingy to me. > Output from C:\cygwin\bin\id.exe > UID: 1049579(layer) GID: 1049089(Domain Users) > 1049089(Domain Users) 559(Performance Log Users) > 545(Users) 14(REMOTE INTERACTIVE LOGON) > 4(INTERACTIVE) 11(Authenticated Users) > 15(This Organization) 4095(CurrentSession) > 66048(LOCAL) 1054502(domcon2 $ Acronis Remote Users) > 1055482(CERTSVC_DCOM_ACCESS) 401408(Medium Mandatory Level) I don’t see 544 in there, so this must not be an admin shell. I believe you need to run ssh-host-config as admin for it to do its work correctly. Without those privileges, it can’t set sshd up to run as admin but drop privileges to the logged-in user when accepting connections. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple