Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Thu, 18 Jul 2002 22:39:40 -0700 From: David MacMahon To: cygwin AT cygwin DOT com Subject: Re: Fwd: Re: cron and NT domains Message-ID: <20020718223940.B1727@SmartSC.com> Mail-Followup-To: cygwin AT cygwin DOT com References: <20020717190123 DOT GC440 AT tishler DOT net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.22.1i On Wed, Jul 17, 2002 at 03:01:23PM -0400, Jason Tishler wrote: > On Mon, Jul 15, 2002 at 10:59:33PM -0700, David MacMahon wrote: > > This creates one "Information" event and one "Error" in Event Viewer. > > The Information event says "Accepted publickey for dm2328 from > > 10.10.10.41 port 32838 ssh2." The Error event says "fatal: setuid > > 6539: Permission denied." > > I was getting the same Event Log entries as above when disconnected from > my PDC. > > See the following mailing list thread: > > http://cygwin.com/ml/cygwin-developers/2002-07/msg00084.html > > It's just a WAG, but possibly Pierre's patch would help you out too? > > http://cygwin.com/ml/cygwin-developers/2002-07/msg00111.html Thanks for the links. They encouraged me to use strace to get some more data about the behavior I am observing. It turns out that I am getting a different error than you were getting when disconnected from your PDC. Are you running sshd under your domain account, your local account, or the "SYSTEM" account? To ask it another way, who owns the /etc/ssh_host* files? I am getting these three errors: 1308, 1300, and 1326. Here is the relevant excerpt from my strace output (sorry for the wrapping and any superfluous output)... 174 16100698 [main] sshd 1544 setegid32: SetTokenInformation(process, TokenPrimaryGroup): Win32 error 1308 116 16100814 [main] sshd 1544 seteuid32: uid: 6539 myself->gid: 10513 150 16100964 [main] sshd 1544 seteuid32: Process token not verified 1197 16102161 [main] sshd 1544 set_process_privilege: Privilege SeCreateTokenPrivilege couldn't be assigned 190 16102351 [main] sshd 1544 seterrno_from_win_error: /netrel/src/cygwin-1.3.12-2/winsup/cygwin/sec_helper.cc:383 windows error 1300 106 16102457 [main] sshd 1544 geterrno_from_win_error: unknown windows error 1300, setting errno to 13 7491 16102676 [select_pipe] sshd 1808 thread_pipe: stopping 549 16103006 [main] sshd 1544 set_process_privilege: -1 = set_process_privilege (SeCreateTokenPrivilege, 1) 111 16103117 [main] sshd 1544 create_token: -1 = create_token () 105 16103222 [main] sshd 1544 seteuid32: create token failed, try subauthentication. 1296 16104518 [main] sshd 1544 set_process_privilege: 0 = set_process_privilege (SeTcbPrivilege, 1) 816 16105334 [main] sshd 1544 extract_nt_dom_user: pw_gecos = 100B176A (David +MacMahon,U-ITSERVICES\dm2328,S-1-5-21-2057499049-1289676208-1959431660-203147) 3979 16106655 [main] sshd 1808 socket_cleanup: si 0x100CD4F0 si->thread 0x240 195 16106850 [main] sshd 1808 socket_cleanup: connection to si->exitsock 0x208 5475 16112325 [main] sshd 1808 socket_cleanup: returning 203 16112528 [main] sshd 1808 peek_socket: considering handle 0x1BC 122 16112650 [main] sshd 1808 peek_socket: adding read fd_set /dev/tcp, fd 4 112 16112762 [main] sshd 1808 peek_socket: adding write fd_set /dev/tcp, fd 4 135 16112897 [main] sshd 1808 peek_socket: WINSOCK_SELECT returned 1 527 16113424 [main] sshd 1808 set_bits: me 0x100B4A68, testing fd 4 (/dev/tcp) 201 16113625 [main] sshd 1808 set_bits: ready 1 148 16113773 [main] sshd 1808 select_stuff::poll: returning 1 145 16113918 [main] sshd 1808 select_stuff::cleanup: calling cleanup routines 110 16114028 [main] sshd 1808 select_stuff::~select_stuff: deleting select records 439 16114467 [main] sshd 1808 set_process_mask: old mask = 0, new mask = 80000 113 16114580 [main] sshd 1808 set_process_mask: old mask = 80000, new mask = 0 123 16114703 [main] sshd 1808 _write: write (4, 0x100B6168, 160) 110 16114813 [main] sshd 1808 fhandler_socket::send: Fallback to winsock 1 send call 411 16115224 [main] sshd 1808 _write: 160 = write (4, 0x100B6168, 160) 161 16115385 [main] sshd 1808 cygwin_select: 10, 0x100BBAA0, 0x100B4BB0, 0x0, 0x0 215 16115600 [main] sshd 1808 dtable::select_read: /dev/piper fd 3 230 16115830 [main] sshd 1808 dtable::select_read: /dev/tcp fd 4 747 16116577 [main] sshd 1808 dtable::select_read: /dev/ptym fd 9 131 16116708 [main] sshd 1808 cygwin_select: to NULL, ms FFFFFFFF 304 16117012 [main] sshd 1808 cygwin_select: sel.always_ready 0 2135 16119147 [main] sshd 1808 start_thread_socket: Handle 0x1BC 131 16119278 [main] sshd 1808 start_thread_socket: Added to readfds 394 16119672 [main] sshd 1808 start_thread_socket: exitsock 0x208 293 16119965 [main] sshd 1808 start_thread_socket: stuff_start 0x22F30C 257 16120222 [main] sshd 1808 select_stuff::wait: m 3, ms 4294967295 774 16120996 [select_socket] sshd 1808 thread_socket: stuff_start 0x100D0514 74765 16180099 [main] sshd 1544 subauth: LsaLogonUser: -1073741715 235 16180334 [main] sshd 1544 seterrno_from_win_error: /netrel/src/cygwin-1.3.12-2/winsup/cygwin/security.cc:969 windows error 1326 109 16180443 [main] sshd 1544 geterrno_from_win_error: unknown windows error 1326, setting errno to 13 1246 16181689 [main] sshd 1544 set_process_privilege: 1 = set_process_privilege (SeTcbPrivilege, 0) 185 16181874 [main] sshd 1544 setuid32: real: 1002, effective: 1002 Dave -- David MacMahon, President Smart Software Consulting http://www.smartsc.com -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/