Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Fri, 15 Mar 2002 09:26:25 +0100 From: Corinna Vinschen To: cygwin AT cygwin DOT com Subject: Re: sshd as a service Message-ID: <20020315092625.F31148@cygbert.vinschen.de> Mail-Followup-To: cygwin AT cygwin DOT com References: <00f101c1cb6a$e5f9a680$6601a8c0 AT MAZRIM> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <00f101c1cb6a$e5f9a680$6601a8c0@MAZRIM> User-Agent: Mutt/1.3.22.1i On Thu, Mar 14, 2002 at 09:14:11AM -0600, Brian Huddleston wrote: > We're trying to get sshd running on a Windows 2000 server box. We're using > the latest version of everything (as of yesterday morning). > > We're trying to get DSA authentication setup and we seem to have succeeded. > *If* we launch sshd from the command line, the DSA authentication works as > expected and we can login without a password. > > Once we install it as a service and try again we get prompted for the > password. I assume it is some > sort of permission problem (since sshd behaves properly from the > commandline), > > *except* > > We have StrictModes set to no in /etc/sshd_config > *and* > we only set CYGWIN to binmode tty when prompted by the ssh configuration > script, so there shouldn't be any NT security issues involved. We even > manually gave SYSTEM Full Control over the entire cygwin directory and it > didn't seem to work. You *must* set ntsec to get it reliably working as a service. User context switches w/o providing a password only works with ntsec. Corinna -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Developer mailto:cygwin AT cygwin DOT com Red Hat, Inc. -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/