Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
Message-ID: <3BC5AAD0.22066E65@cportcorp.com>
Date: Thu, 11 Oct 2001 10:21:04 -0400
From: Peter Buckley <peter DOT buckley AT cportcorp DOT com>
X-Mailer: Mozilla 4.7 [en] (WinNT; U)
X-Accept-Language: en
MIME-Version: 1.0
To: Chris Patti <cpatti AT atg DOT com>
CC: cygwin AT cygwin DOT com, rjohnson AT atg DOT com
Subject: Re: sshd as a service question: fatal: setuid 400: not owner
References: <5 DOT 1 DOT 0 DOT 14 DOT 0 DOT 20011010184211 DOT 00a93218 AT pop DOT atg DOT com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Chris-

What user is running sshd as a service? If you 
are using SYSTEM (i.e. you haven't specified another 
user to run the service) you are hindered in 
getting anything to work. 

Case in point- I am running inetd/sshd at my workplace 
and all the domain users in my /etc/passwd (created via 
mkpasswd -d) have //network/share as their home directory. 
It took me forever to figure out that the SYSTEM user account 
didn't have the ability to access ANY network share. When 
I run inetd/sshd as a normal domain user, things work okay. 

AFAIK, you should run the sshd service as admin or a domain user. 
If you need any more suggestions about running these type 
of services, let me know off list and I can forward some emails 
that I got (and saved) that were very helpful in getting 
inetd to work for me. 

Also, have you checked out http://tech.erdelynet.com?
It is a good site on using ssh with cygwin, and has its 
own ssh mailing list.

HTH,
Peter 

Chris Patti wrote:
> 
> Folks;
> 
> We're trying to switch from Atamann telnetd which we hate to Cygwin's sshd
> for our NT 4 servers.
> 
> We've got sshd otherwise properly configured, if we run it from the command
> line in -d mode we can successfully connect no problem.
> 
> However, when we run it as a service, we get the above error whenever
> someone tries to log in.
> 
> Here's the full error from the event log:
> 
> The description for Event ID ( 0 ) in Source ( sshd ) could not be found.
> It contains the following insertion string(s):
> sshd : Win32 Process Id = 0xBD : Cygwin Process Id = 0xBD : fatal: setuid
> 400: Not owner
> 
>  From the client side, we get:
> 
> black-racer% /usr/local/bin/ssh -v flame-flunky
> SSH Version 1.2.27 [sparc-sun-solaris2.7], protocol version 1.5.
> Standard version.  Does not use RSAREF.
> black-racer: Reading configuration data /etc/ssh_config
> black-racer: ssh_connect: getuid 400 geteuid 400 anon 1
> black-racer: Connecting to flame-flunky [10.2.130.22] port 22.
> black-racer: Connection established.
> black-racer: Remote protocol version 1.99, remote software version
> OpenSSH_2.9.9p2
> black-racer: Waiting for server public key.
> black-racer: Received server public key (768 bits) and host key (1024 bits).
> black-racer: Host 'flame-flunky' is known and matches the host key.
> black-racer: Initializing random; seed file /users/releng/.ssh/random_seed
> black-racer: IDEA not supported, using 3des instead.
> black-racer: Encryption type: 3des
> black-racer: Sent encrypted session key.
> black-racer: Installing crc compensation attack detector.
> black-racer: Received encrypted confirmation.
> black-racer: No agent.
> black-racer: Trying RSA authentication with key 'releng AT atlas'
> black-racer: Received RSA challenge from server.
> black-racer: Sending response to host key RSA challenge.
> black-racer: Remote: RSA authentication accepted.
> black-racer: RSA authentication accepted by server.
> black-racer: Requesting pty.
> black-racer: Requesting shell.
> black-racer: Entering interactive session.
> Last login: Wed Oct 10 18:46:14 2001 from black-racer.atg.com
> Connection to flame-flunky closed by remote host.
> Connection to flame-flunky closed.
> black-racer: Transferred: stdin 0, stdout 64, stderr 87 bytes in 0.4 seconds
> black-racer: Bytes per second: stdin 0.0, stdout 167.7, stderr 227.9
> black-racer: Exit status -1
> black-racer%
> 
> Any clues please? I've got a piece of my reputation staked on this being a
> workable solution, so any help would be a boon :)
> 
> Thanks!
> 
> -Chris
> 
> --
> Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
> Bug reporting:         http://cygwin.com/bugs.html
> Documentation:         http://cygwin.com/docs.html
> FAQ:                   http://cygwin.com/faq/

-- 
Your mouse has moved.
Windows NT must be restarted for the change to take effect.
Reboot now?  [OK]

--

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/