Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Tue, 4 Dec 2001 17:32:08 -0600 (CST) From: Dave Pinsker To: cygwin AT cygwin DOT com Subject: Illegal User Error Attempting to Authenticate in sshd Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII ========================================================================= Summary: Unable to run sshd and login with latest app revs Cygwin: 1.3.5-3 (downloaded & installed 12/3/01) OpenSsh: 3.0.1.p1-2 OS: Win2k SP2 (FAT32 -- intentionally) ========================================================================= Listfolk: I am presently unable to fire up sshd and successfully login. Commands I have been working with are described below, with file & debug output as well. For the record, in my quest to get sshd working, I have: scanned all relevant postings on this mailing list's archives (most deal with an NTFS solution, which I am not running), read the openssh*README, and reviewed Mike Erdely's configuration pages - all while making various attempts over the better part of 2 days to find a solution. :) Thanks for your assistance, _Dave_ davep AT interaccess DOT com ========================================================================= cd /usr/sbin && ./sshd -d -d -d -D (command line - run by user with administrator priv's) Do not receive illegal user error messages, but receive "Failed password for " ========================================================================= cygrunsrv -I sshdcyg -p /usr/sbin/sshd -a '-d -d -D' -d 'Cygwin SSHD' Using "cygrunsrv" to install a service is successful, however am unable to successfully start service either through "cygrunsrv -S" or Win's Service Manager. Returns the error "Service did not return an error", as seen in other postings. Numerous attempts with different configuration settings seem to say that using cygrunsrv with my configuration is a nogo. ========================================================================= instsrv --OR-- using srvany to open cmd window as SYSTEM, then sshd... Am successfully able to install and start the service after modifying the registry (below) as described in the MS knowledgebase doc: http://support.microsoft.com/default.aspx?scid=kb;EN-US;Q152460 Receive the "illegal user" error in the sshd debug output below. I did notice the "Not a RSA1 key file" errors, but have been unable to remedy. I have re-run ssh-host-config, but to no avail. I suspect they may be due to the DOS-method of running the daemon through srvany, described in the registry settings below. Then again,... ========================================================================= [ srvany sshd registry settings ] Parameters\Application = c:\cygwin\usr\sbin\sshd.exe Parameters\AppParameters = -d -d -d -D -f c:\cygwin\etc\sshd_config.dos ========================================================================= [ sshd_config.dos ] # This is the sshd server system-wide configuration file. See sshd(8) # for more information. Port 22 Protocol 2,1 #ListenAddress 0.0.0.0 #ListenAddress :: # HostKey for protocol version 1 HostKey c:/cygwin/etc/ssh_host_key # HostKeys for protocol version 2 HostKey c:/cygwin/etc/ssh_host_rsa_key HostKey c:/cygwin/etc/ssh_host_dsa_key # Lifetime and size of ephemeral version 1 server ke KeyRegenerationInterval 3600 ServerKeyBits 768 # Logging SyslogFacility AUTH LogLevel INFO #obsoletes QuietMode and FascistLogging # Authentication: LoginGraceTime 600 PermitRootLogin yes # The following setting overrides permission checks on host key files # and directories. For security reasons set this to "yes" when running # NT/W2K, NTFS and CYGWIN=ntsec. StrictModes no RSAAuthentication no PubkeyAuthentication yes #AuthorizedKeysFile %h/.ssh/authorized_keys # rhosts authentication should not be used RhostsAuthentication no # Don't read ~/.rhosts and ~/.shosts files IgnoreRhosts yes # For this to work you will also need host keys in /etc/ssh_known_hosts RhostsRSAAuthentication no # similar for protocol version 2 HostbasedAuthentication no # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication #IgnoreUserKnownHosts yes # To disable tunneled clear text passwords, change to no here! PasswordAuthentication yes PermitEmptyPasswords no X11Forwarding no X11DisplayOffset 10 PrintMotd yes #PrintLastLog no KeepAlive yes #UseLogin no #AllowUsers davep #MaxStartups 10:30:60 #Banner /etc/issue.net #ReverseMappingCheck yes Subsystem sftp /usr/sbin/sftp-server ========================================================================= [ sshd debug output ] debug1: Seeding random number generator debug1: sshd version OpenSSH_3.0.1p1 debug1: private host key: #0 type 0 RSA1 debug3: Not a RSA1 key file c:/cygwin/etc/ssh_host_rsa_key. debug1: read PEM private key done: type RSA debug1: private host key: #1 type 1 RSA debug3: Not a RSA1 key file c:/cygwin/etc/ssh_host_dsa_key. debug1: read PEM private key done: type DSA debug1: private host key: #2 type 2 DSA debug1: Bind to port 22 on 0.0.0.0. Server listening on 0.0.0.0 port 22. Generating 768 bit RSA key. RSA key generation complete. debug1: Server will not fork when running in debugging mode. Connection from 207.208.45.70 port 64063 debug1: Client protocol version 1.5; client software version 1.2.20 debug1: match: 1.2.20 pat ^1\.2\.2[012] debug1: Local version string SSH-1.99-OpenSSH_3.0.1p1 debug1: Rhosts Authentication disabled, originating port 64063 not trusted. debug1: Sent 768 bit server key and 1024 bit host key. debug1: Encryption type: 3des debug1: Received session key; encryption turned on. debug1: Installing crc compensation attack detector. debug1: do_authentication: illegal user Dave Pinsker debug1: Attempting authentication for illegal user Dave Pinsker. [ presented with prompt at client ] ========================================================================= [ /etc/passwd -- freshly generated w/ mkpasswd -l. Modified group 514 to correctly reflect Administrator. Attempted w/ & w/out modification ] Everyone:*:0:0:,S-1-1-0:: SYSTEM:*:18:18:,S-1-5-18:: Administrators:*:544:544:,S-1-5-32-544:: Administrator:unused_by_nt/2000/xp:500:544:U-DELLPC\Administrator,S-1-5-21-57989841-920026266-1708537768-500:/home/Administrator:/bin/bash Dave Pinsker:unused_by_nt/2000/xp:1000:544:Dave Pinsker,U-DELLPC\Dave Pinsker,S-1-5-21-57989841-920026266-1708537768-1000:/home/Dave Pinsker:/bin/bash davep:unused_by_nt/2000/xp:1001:544:davep,U-DELLPC\davep,S-1-5-21-57989841-920026266-1708537768-1001:/home/davep:/bin/bash Guest:unused_by_nt/2000/xp:501:513:U-DELLPC\Guest,S-1-5-21-57989841-920026266-1708537768-501:/home/Guest:/bin/bash ========================================================================= [ /etc/group -- looked good, so didn't regen. However, did remove DOS EOL's ] Everyone:S-1-1-0:0: SYSTEM:S-1-5-18:18: None:S-1-5-21-57989841-920026266-1708537768-513:513: Administrators:S-1-5-32-544:544: Backup Operators:S-1-5-32-551:551: Guests:S-1-5-32-546:546: Power Users:S-1-5-32-547:547: Replicator:S-1-5-32-552:552: Users:S-1-5-32-545:545: ========================================================================= [ cygcheck -s -r -v output] Cygnus Win95/NT Configuration Diagnostics Current System Time: Tue Dec 04 16:16:09 2001 Windows 2000 Professional Ver 5.0 build 2195 Service Pack 2 Path: C:\cygwin\bin C:\cygwin\usr\local\bin C:\cygwin\bin C:\cygwin\bin c:\WINNT\system32 c:\WINNT c:\WINNT\System32\Wbem c:\Program Files\Dell\Resolution Assistant\Common\bin c:\dave_bin c:\ssh c:\Support\ c:\Program Files\Network Associates\PGPNT C:\cygwin\bin C:\cygwin\usr\sbin C:\cygwin\usr\X11R6\bin . SysDir: C:\WINNT\System32 WinDir: C:\WINNT CYGWIN = `ntsec tty' [ NOTE: have tried w/ all combinations: off, on, ntea,..] HOME = `c:\docume~1\davepi~1' MAKE_MODE = `unix' PWD = `/cygdrive/c/docume~1/davepi~1' USER = `Dave Pinsker' ALLUSERSPROFILE = `C:\Documents and Settings\All Users' APPDATA = `C:\Documents and Settings\Dave Pinsker\Application Data' CLASSPATH = `C:\progra~1\photod~1.0\adobec~1;.;C:\progra~1\JavaSoft\JRE\1.4;D:\Archive\JAVA_T~1\Java\syncbuilder.jar' COMMONPROGRAMFILES = `C:\Program Files\Common Files' COMPUTERNAME = `DELLPC' COMSPEC = `C:\WINNT\system32\cmd.exe' HOMEDRIVE = `C:' HOMEPATH = `\' LOGONSERVER = `\\DELLPC' MANPATH = `:/usr/man' NUMBER_OF_PROCESSORS = `1' OLDPWD = `/etc' OS2LIBPATH = `C:\WINNT\system32\os2\dll;' OS = `Windows_NT' PATHEXT = `.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH' PGPPATH = `C:\Program Files\Network Associates\PGPNT' PROCESSOR_ARCHITECTURE = `x86' PROCESSOR_IDENTIFIER = `x86 Family 6 Model 8 Stepping 6, GenuineIntel' PROCESSOR_LEVEL = `6' PROCESSOR_REVISION = `0806' PROGRAMFILES = `C:\Program Files' PROMPT = `$P$G' PS1 = `\[\033]0;\w\007 \033[32m\]\u@\h \[\033[33m\w\033[0m\] $ ' SHLVL = `1' SYSTEMDRIVE = `C:' SYSTEMROOT = `C:\WINNT' TEMP = `c:\DOCUME~1\DAVEPI~1\LOCALS~1\Temp' TERM = `cygwin' TZ = `CST6CDT' USERDOMAIN = `DELLPC' USERNAME = `Dave Pinsker' USERPROFILE = `C:\Documents and Settings\Dave Pinsker' WINDIR = `C:\WINNT' _ = `/usr/bin/cygcheck' HKEY_CURRENT_USER\Software\Cygnus Solutions HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\mounts v2 (default) = `/cygdrive' cygdrive flags = 0x00000022 HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\mounts v2\/ (default) = `C:/cygwin' flags = 0x00000002 HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\mounts v2\/usr/bin (default) = `C:/cygwin/bin' flags = 0x00000002 HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\mounts v2\/usr/lib (default) = `C:/cygwin/lib' flags = 0x00000002 HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\Program Options HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Cygnus Solutions (default) = (unsupported type) HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2 HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\Program Options a: fd N/A N/A c: hd FAT32 19992Mb 28% CP UN d: hd FAT32 18150Mb 3% CP UN ARCHIVE VOL e: cd N/A N/A C:/cygwin / user binmode C:/cygwin/bin /usr/bin user binmode C:/cygwin/lib /usr/lib user binmode . /cygdrive user binmode,noumount Found: C:\cygwin\bin\bash.exe Found: C:\cygwin\bin\cat.exe Found: c:\dave_bin\cat.exe Warning: C:\cygwin\bin\cat.exe hides c:\dave_bin\cat.exe Found: C:\cygwin\bin\cpp.exe Found: C:\cygwin\bin\find.exe Found: C:\cygwin\bin\gcc.exe Found: C:\cygwin\bin\gdb.exe Found: C:\cygwin\bin\ld.exe Found: C:\cygwin\bin\ls.exe Found: c:\dave_bin\ls.exe Warning: C:\cygwin\bin\ls.exe hides c:\dave_bin\ls.exe Found: C:\cygwin\bin\make.exe Found: C:\cygwin\bin\sh.exe 678k 2001/12/03 C:\WINNT\cygwin1_sshd.dll - os=4.0 img=1.0 sys=4.0 "cygwin1.dll" v0.0 ts=2001/5/20 22:28 792k 2001/12/03 C:\WINNT\cygwin1_dist.dll - os=4.0 img=1.0 sys=4.0 "cygwin1.dll" v0.0 ts=1999/8/3 7:02 714k 2001/12/03 C:\WINNT\cygwin1_135.dll - os=4.0 img=1.0 sys=4.0 "cygwin1.dll" v0.0 ts=2001/11/13 22:16 56k 2000/12/03 C:\cygwin\bin\cygbz21.0.dll - os=4.0 img=1.0 sys=4.0 "cygbz21.0.dll" v0.0 ts=2000/11/20 17:53 18k 2000/10/23 C:\cygwin\bin\cyggdbm.dll - os=4.0 img=1.0 sys=4.0 "cyggdbm.dll" v0.0 ts=2000/10/22 21:26 41k 2001/07/04 C:\cygwin\bin\cygXpm-noX4.dll - os=4.0 img=1.0 sys=4.0 "cygXpm-noX4.dll" v0.0 ts=2001/7/3 20:21 45k 2001/07/04 C:\cygwin\bin\cygXpm-X4.dll - os=4.0 img=1.0 sys=4.0 "cygXpm-X4.dll" v0.0 ts=2000/11/19 20:45 678k 2001/12/03 C:\cygwin\bin\cygwin1_sshd.dll - os=4.0 img=1.0 sys=4.0 "cygwin1.dll" v0.0 ts=2001/5/20 22:28 119k 2001/06/06 C:\cygwin\bin\cygjpeg6b.dll - os=4.0 img=1.0 sys=4.0 "cygjpeg6b.dll" v0.0 ts=2001/6/5 23:27 163k 2001/05/06 C:\cygwin\bin\cygpng2.dll - os=4.0 img=1.0 sys=4.0 "cygpng2.dll" v0.0 ts=2001/5/5 23:05 245k 2001/06/12 C:\cygwin\bin\cygtiff3.dll - os=4.0 img=1.0 sys=4.0 "cygtiff3.dll" v0.0 ts=2001/6/12 12:25 49k 2001/02/03 C:\cygwin\bin\cygz.dll - os=4.0 img=1.0 sys=4.0 "cygz.dll" v0.0 ts=2001/2/3 14:35 81k 2001/10/20 C:\cygwin\bin\cygitcl30.dll - os=4.0 img=1.0 sys=4.0 "cygitcl30.dll" v0.0 ts=2001/10/19 19:25 35k 2001/10/20 C:\cygwin\bin\cygitk30.dll - os=4.0 img=1.0 sys=4.0 "cygitk30.dll" v0.0 ts=2001/10/19 19:25 390k 2001/10/20 C:\cygwin\bin\cygtcl80.dll - os=4.0 img=1.0 sys=4.0 "cygtcl80.dll" v0.0 ts=2001/10/19 19:24 5k 2001/10/20 C:\cygwin\bin\cygtclpip80.dll - os=4.0 img=1.0 sys=4.0 10k 2001/10/20 C:\cygwin\bin\cygtclreg80.dll - os=4.0 img=1.0 sys=4.0 "cygtclreg80.dll" v0.0 ts=2001/10/19 19:24 623k 2001/10/20 C:\cygwin\bin\cygtk80.dll - os=4.0 img=1.0 sys=4.0 "cygtk80.dll" v0.0 ts=2001/10/19 19:25 21k 2001/06/20 C:\cygwin\bin\cygintl.dll - os=4.0 img=1.0 sys=4.0 "cygintl.dll" v0.0 ts=2001/6/20 12:09 45k 2001/07/04 C:\cygwin\bin\cygjbig1.dll - os=4.0 img=1.0 sys=4.0 "cygjbig1.dll" v0.0 ts=2001/7/3 22:25 34k 2001/09/30 C:\cygwin\bin\cygform6.dll - os=4.0 img=1.0 sys=4.0 "cygform6.dll" v0.0 ts=2001/9/29 21:43 19k 2001/09/30 C:\cygwin\bin\cygmenu6.dll - os=4.0 img=1.0 sys=4.0 "cygmenu6.dll" v0.0 ts=2001/9/29 21:43 175k 2001/09/30 C:\cygwin\bin\cygncurses++6.dll - os=4.0 img=1.0 sys=4.0 "cygncurses++6.dll" v0.0 ts=2001/9/29 21:45 201k 2001/09/30 C:\cygwin\bin\cygncurses6.dll - os=4.0 img=1.0 sys=4.0 "cygncurses6.dll" v0.0 ts=2001/9/29 21:42 12k 2001/09/30 C:\cygwin\bin\cygpanel6.dll - os=4.0 img=1.0 sys=4.0 "cygpanel6.dll" v0.0 ts=2001/9/29 21:43 821k 2001/11/19 C:\cygwin\bin\cygcrypto.dll - os=4.0 img=1.0 sys=4.0 "cygcrypto.dll" v0.0 ts=2001/11/19 17:42 231k 2001/11/19 C:\cygwin\bin\cygssl.dll - os=4.0 img=1.0 sys=4.0 "cygssl.dll" v0.0 ts=2001/11/19 17:42 40k 2001/11/21 C:\cygwin\bin\cygpcre.dll - os=4.0 img=1.0 sys=4.0 "cygpcre.dll" v0.0 ts=2001/11/21 16:15 39k 2001/11/21 C:\cygwin\bin\cygpcreposix.dll - os=4.0 img=1.0 sys=4.0 "cygpcreposix.dll" v0.0 ts=2001/11/21 16:15 17k 2001/06/28 C:\cygwin\bin\cyghistory4.dll - os=4.0 img=1.0 sys=4.0 "cyghistory4.dll" v0.0 ts=2001/1/6 22:34 21k 2001/06/28 C:\cygwin\bin\cyghistory5.dll - os=4.0 img=1.0 sys=4.0 "cyghistory5.dll" v0.0 ts=2001/6/27 21:27 108k 2001/06/28 C:\cygwin\bin\cygreadline4.dll - os=4.0 img=1.0 sys=4.0 "cygreadline4.dll" v0.0 ts=2001/1/6 22:34 135k 2001/06/28 C:\cygwin\bin\cygreadline5.dll - os=4.0 img=1.0 sys=4.0 "cygreadline5.dll" v0.0 ts=2001/6/27 21:27 66k 2001/11/20 C:\cygwin\bin\cygregex.dll - os=4.0 img=1.0 sys=4.0 "cygregex.dll" v0.0 ts=2001/11/20 8:44 714k 2001/12/03 C:\cygwin\bin\cygwin1.dll - os=4.0 img=1.0 sys=4.0 "cygwin1.dll" v0.0 ts=2001/11/13 22:16 Cygwin DLL version info: DLL version: 1.3.5 DLL epoch: 19 DLL bad signal mask: 19005 DLL old termios: 5 DLL malloc env: 28 API major: 0 API minor: 47 Shared data: 3 DLL identifier: cygwin1 Mount registry: 2 Cygnus registry name: Cygnus Solutions Cygwin registry name: Cygwin Program options name: Program Options Cygwin mount registry name: mounts v2 Cygdrive flags: cygdrive flags Cygdrive prefix: cygdrive prefix Cygdrive default prefix: Build date: Tue Nov 13 23:16:25 EST 2001 CVS tag: cygwin-1-3-5-2 Shared id: cygwin1S3 Cygwin Package Information Last downloaded files to: D:\Archive\Cygwin Last downloaded files from: ftp://planetmirror.com/pub/sourceware/cygwin Package Version ash 20011018-1 autoconf 2.52-5 autoconf-devel 2.52-4 autoconf-stable 2.13-4 automake 1.5a-1 automake-devel 1.5-5 automake-stable 1.4p5-5 bash 2.05a-2 binutils 20011002-1 bison 1.28-1 bison-src 1.28-1 byacc 0.0 bzip2 1.0.1-6 clear 1.0 cpio 2.4.2 cron 3.0.1-5 crypt 1.0-1 ctags 5.0.1-1 cvs 1.11.0-1 cygrunsrv 0.94-2 cygwin 1.3.5-3 dejagnu 20010117-1 diff 0.0 diff-src 0.0 expect 20010117-1 file 3.33-1 file-src 3.33-1 fileutils 4.1-1 fileutils-src 4.1-1 findutils 0.0 findutils-src 0.0 flex 2.5.4-1 gawk 3.0.4-1 gcc 2.95.3-5 gdb 20010428-3 gdbm 1.8.0-3 gettext 0.10.38-2 ghostscript 6.51-1 gperf 0.0 gperf-src 0.0 grep 2.4.2-1 grep-src 2.4.2-1 groff 1.17.2-1 gzip 1.3.2-1 inetutils 1.3.2-15 irc 20010101-1 jbigkit 1.2-4 jpeg 6b-4 less 358-3 less-src 358-3 libncurses5 5.2-1 libncurses6 5.2-2 libpng 1.0.11-1 login 1.4-2 login-src 1.4-2 lynx 2.8.4-1 m4 0.0 make 3.79.1-5 man 1.5g-2 mingw 20010917-1 mktemp 1.4-1 mt 2.0.1-1 mutt 1.2.5i-5 ncftp 3.0.2-2 ncurses 5.2-7 newlib-man 20001118-1 opengl 1.1.0-5 openssh 3.0.1p1-2 openssh-src 3.0.1p1-2 openssl 0.9.6b-2 patch 2.5-2 pcre 3.7-1 perl 5.6.1-2 popt 1.6.2-1 postgresql 7.1.3-1 python 2.1.1-2 readline 4.2-3 regex 4.4-2 rsync 2.4.6-3 rxvt 2.7.2-6 sed 3.02-1 sed-src 3.02-1 sh-utils 2.0-2 sh-utils-src 2.0-2 squid 2.4-STABLE20010508 ssmtp 2.38.7-3 tar 1.13.19-1 tar-src 1.13.19-1 tcltk 20001125-1 tcsh 6.10.00-3 tcsh-src 6.10.00-3 termcap 20010825-1 terminfo 5.2-1 tetex-beta 20001218-1 texinfo 4.0-4 textutils 2.0.16-1 tiff 3.5.6beta-2 time 1.7-1 unzip 5.41-1 vim 6.0.93-1 w32api 1.1-1 wget 1.7-1 which 1.5-1 xpm-nox 4.1.0-1 zip 2.3-1 zlib 1.1.3-6 -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/