Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com> List-Archive: <http://sources.redhat.com/ml/cygwin/> List-Post: <mailto:cygwin AT cygwin DOT com> List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs> Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com To: "Max Bowsher" <maxb AT ukf DOT net> Cc: cygwin AT cygwin DOT com Subject: Re: SSHD/ MIME-Version: 1.0 From: Marco DOT Rottigni AT stonesoft DOT com Message-ID: <OFCDE03901.1281CC71-ONC1256CC4.00607103-C1256CC4.0060CE2D@stonesoft.com> Date: Wed, 5 Feb 2003 18:39:35 +0100 Content-Type: text/plain; charset="us-ascii" >From: "Max Bowsher" <maxb AT ukf DOT net> >Date: 05/02/2003 18.04.07 >Subject: Re: SSHD/ > >Marco DOT Rottigni AT stonesoft DOT com wrote: >> $ ssh-host-config -y >> chmod: changing permissions of `/var/empty': Permission denied > >Worth investigating this. $ ls -l /var total 0 drwxr-xr-x+ 2 SYSTEM SYSTEM 0 Feb 4 17:02 empty Permissions are already OK. > >> Privilege separation is set to yes by default since OpenSSH 3.3. >> However, this requires a non-privileged account called 'sshd'. > >Does such an account exist? (In Windows and in /etc/passwd). marco AT hki-mar-2000 ~ $ less /etc/passwd|grep sshd sshd:unused_by_nt/2000/xp:1004:513:sshd privsep,U-HKI-MAR-2000\sshd,S-1-5-21-1614895754-507921405-839522115-1004:/var/empty:/bin/false User sshd exists also in Control Panel - Users and Passwords and has been installed by the CygWin script as a Restricted User (Win2000 definition is "Users can operate the computer and save documents, but cannot install programs or make potentially damaging changes to the system files and settings") > > > >Max. > -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/