Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
X-Authentication-Warning: slinky.cs.nyu.edu: pechtcha owned process doing -bs
Date: Sun, 21 Mar 2004 23:29:45 -0500 (EST)
From: Igor Pechtchanski <pechtcha AT cs DOT nyu DOT edu>
Reply-To: cygwin AT cygwin DOT com
To: MIke Hanby <flakrat AT swbell DOT net>
cc: cygwin AT cygwin DOT com
Subject: Re: sshd on WinXP machine in Win2003 Domain -- can't log in
In-Reply-To: <c3loh6$9ue$1@sea.gmane.org>
Message-ID: <Pine.GSO.4.56.0403212327080.26885@slinky.cs.nyu.edu>
References: <c3lbf8$ibr$1 AT sea DOT gmane DOT org> <Pine DOT GSO DOT 4 DOT 56 DOT 0403211933260 DOT 26885 AT slinky DOT cs DOT nyu DOT edu> <c3lf36$p1m$1 AT sea DOT gmane DOT org> <Pine DOT GSO DOT 4 DOT 56 DOT 0403212114010 DOT 26885 AT slinky DOT cs DOT nyu DOT edu> <c3loh6$9ue$1 AT sea DOT gmane DOT org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Scanned-By: MIMEDefang 2.39

Hmm, really weird...  I'm officially out of ideas.  Does it work if you
try to log in as a local user (i.e., not a domain one)?

As for /dev, see <http://cygwin.com/ml/cygwin/2004-03/msg01009.html>.
HTH,
	Igor

On Sun, 21 Mar 2004, MIke Hanby wrote:

> stupid Symantec products, thanks for pointing that out
> my home directory is physically located in:
>   C:\Documents and Settings\joeshmo.WIN2003DOMAIN
> I've created a link for /home to point to /cygdrive/c/Docume~1
>   lrwxrwxrwx    1 11107    10513         111 Mar 20 15:59 /home -> /cygdrive/c/Docume~1/
> I've created another link to make my home directory more user friendly
>   lrwxrwxrwx    1 11107    10513         114 Mar 18 00:58 /home/joeshmo -> ./joeshmo.WIN2003DOMAIN/
> User ID 11107 is the id for joeshmo in the /etc/passwd file
>   joeshmo:unused_by_nt/2000/xp:11107:10513:Joe Shmo,U-WIN2003DOMAIN\joeshmo,S-1-5-21-2516459027-1883439143-603107090-1107:/home/joeshmo:/bin/bash
>
> Now, one thing I've noticed in the -v -v output of the ssh client:
>   SSH_TTY=/dev/tty1
> /bin/bash: Permission denied
>
> /dev doesn't exist, is this a problem?
>
> Thanks,
> Mike
>
> "Igor Pechtchanski" <pechtcha AT cs DOT nyu DOT edu> wrote in message
> news:Pine DOT GSO DOT 4 DOT 56 DOT 0403212114010 DOT 26885 AT slinky DOT cs DOT nyu DOT edu...
> Mike,
>
> Thanks.  First off (unrelated, but annoying): Norton Ghost screwed up your
> path -- you should remove the quotes around
> "C:\Program Files\Symantec\Norton Ghost 2003\" in the PATH variable.
> Other than that, everything in your cygcheck output seems in order.  The
> only other thing I can think of at the moment is: is the home directory of
> joeshmo readable by that user?  Can you please run "ls -ln" on joeshmo's
> home directory?  Oh, and do you realize that what sshd thinks the home
> directory is and what $HOME is set to don't match?
> Igor
>
> On Sun, 21 Mar 2004, MIke Hanby wrote:
>
> > Ok, here's the version information:
> >   Cygwin:  CYGWIN_NT-5.1 xphost 1.5.8(0.112/4/2) 2004-03-16 00:19 i686 unknown unknown Cygwin
> >   ssh:         OpenSSH_3.8p1, SSH protocols 1.5/2.0, OpenSSL 0.9.7c 30 Sep 2003
> >   sshd:       sshd version OpenSSH_3.8p1, OpenSSL 0.9.7c 30 Sep 2003
> >   OS running sshd:  Windows XP Pro
> >   Domain Controller OS:  Windows 2003 Server
> >
> > I started sshd service with the "-d -d" double verbose debug output
> > and ssh client with "-v -v" double verbose output.
> >
> > I've attached the ssh client, sshd service and cygcheck.out log files.
> > I tried adding +rx to directory /bin, got the same "Permission Denied"
> > error.
> > I'm not putting the output in the message as it's quite long.
> >
> > Thanks for any help,
> >
> > Mike
> >
> >
> > Igor Pechtchanski wrote:
> > On Sun, 21 Mar 2004, MIke Hanby wrote:
> >
> > > Hey y'all, (sorry if this double posts)
> > >
> > > System:  Windows XP Pro with brand new install of cygwin running sshd.
> > > This system is a member of a Widnows 2003 Active Directory domain.
> > >
> > > Problem:  I've gone through the config steps listed below and unable
> > > to connect to my sshd server.  On the sshd server, from the cygwin
> > > prompt I enter the following:
> > >     $ ssh -p 3020 localhost
> > >     joeshmo AT localhost's password:
> > >     Last login: Sat Mar 20 16:01:17 2004 from localhost
> > >     Fanfare!!!
> > >     You are successfully logged in to this server!!!
> > >     /bin/bash: Permission denied
> > >     Connection to localhost closed.
> > >
> > > Permissions on /bin/bash were -rwxr-x---+, I tried adding +rx, still
> > > get the same error
> > >     -rwxr-xr-x+   1 joeshmo  Users      527360 Oct 20 07:12 /bin/bash*
> > >
> > > Here's what I did to configure sshd
> > > 1.  Installed Cygwin with packages that I downloaded today while logged in
> > >     as my Active Directory user, joeshmo
> > > 2.  Created a new Active Directory user, addomain\sshdproc, and added the
> > >     following rights using the Windows 2003 Server Local Security Policy
> > >         Create a token object
> > >         Log on as a service
> > >         Replcae a process level token
> > >         Adjust memory quotas for a process
> > > 3.  Added sshd as a service on the Windows XP Pro machine, it is set to
> > >     start as the user addomain\sshdproc
> > > 4.  Ran ssh-host-config and answered YES to all questions, including
> > >     "privilege separation"
> > > 5.  Ran the following on the Windows XP machine
> > >      mkpasswd -l -d > /etc/passwd
> > >      mkgroup -l -d > /etc/group
> > > 6. changed permissions on the following files
> > >      touch /var/log/sshd.log
> > >      chmod 644 /var/log/sshd.log
> > >      chown sshdproc /var/empty /var/log/sshd.log /etc/ssh_*
> > > 7.  Start sshd
> > >      cygrunsrv --start sshd
> > >
> > > I then get the error above, /bin/bash: Permission denied
> > > Any idea what file(s) it might be referring to?
> > > Any ideas on what else I can do?
> > >
> > > Thanks in advance,
> > > Mike
> >
> > Without the requisite information requested in the Cygwin problem
> > reporting guidelines at <http://cygwin.com/problems.html> we can only
> > guess, but, since you had to change the permissions on /bin/bash, I'd
> > guess that you'll need to change the permissions on at least /bin as well.
> > Also, try running sshd and ssh with a few -v flags (multiple -v's increase
> > the verbosity level)...
> > Igor

-- 
				http://cs.nyu.edu/~pechtcha/
      |\      _,,,---,,_		pechtcha AT cs DOT nyu DOT edu
ZZZzz /,`.-'`'    -.  ;-;;,_		igor AT watson DOT ibm DOT com
     |,4-  ) )-,_. ,\ (  `'-'		Igor Pechtchanski, Ph.D.
    '---''(_/--'  `-'\_) fL	a.k.a JaguaR-R-R-r-r-r-.-.-.  Meow!

"I have since come to realize that being between your mentor and his route
to the bathroom is a major career booster."  -- Patrick Naughton

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/