Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com X-Original-Recipient: Message-ID: <3DB72881.92F362E1@biochem.kth.se> Date: Thu, 24 Oct 2002 00:53:53 +0200 From: Fredrik Viklund X-Accept-Language: en MIME-Version: 1.0 To: cygwin AT cygwin DOT com Subject: sshd doesn't work after sshd-host-config - fix proposed References: <1035402402 DOT 11030 DOT ezmlm AT cygwin DOT com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit I have spent time the last few days setting up sshd under Win2k and WinXP with privilege separation and it is clear from the maling lists that I have not been alone in my troubles... The setup that fails: * A clean install of cygwin from Internet (on seasoned Windows 2000 and a clean install of XP) * Doing "ssh-host-config" and answering yes to all questions, enabling privlege separation * Doing "ssh-user-config" * Starting the "CYGWIN sshd" service It immediately stops and logs "Bad owner or mode for /var/empty" to /var/log/sshd.log The one line that makes it work: $ chmod 755 /var/empty Just as /usr/doc/openssh/README.privsep says... So the following (or a similar) "diff -u" should make sh-host-config work better for average joe and me: --- ssh-host-config.orig 2002-10-23 14:24:04.000000000 +0200 +++ ssh-host-config 2002-10-23 14:23:49.000000000 +0200 @@ -164,6 +164,7 @@ if [ $_nt -gt 0 ] then chown system.system /var/empty + chmod 755 /var/empty fi fi Most problems/solutions I've seen so far have focussed on users and file ownership when what fails is the file privileges. Because I'm no cygwin guru I just might be knocking down open doors with this one. In that case, bear with me :-) /Fredrik -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/