X-Spam-Check-By: sourceware.org
Message-ID: <43CE541C.9010200@gmx.de>
Date: Wed, 18 Jan 2006 15:43:40 +0100
From: Holger Krull <holger DOT krull AT gmx DOT de>
User-Agent: Thunderbird 1.5 (Windows/20051201)
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: Wich privileges required by ssh-host-config running user?
References: <005201c61c3c$3df63940$043a5393 AT fib DOT upc DOT es>
In-Reply-To: <005201c61c3c$3df63940$043a5393@fib.upc.es>
Content-Type: text/plain; charset=ISO-8859-15; format=flowed
Content-Transfer-Encoding: 7bit
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com


> The files have these permissions:
> 
> Administrator AT server ~
> $ ls -l /etc/ssh*
> -rwxr-xr-x  1 Administrator None 1292 Jan 18 13:44 /etc/ssh_config
> -rw-------  1 Administrator None 1192 Jan 18 13:44 /etc/ssh_host_dsa_key
> -rw-r--r--  1 Administrator None 1121 Jan 18 13:44 /etc/ssh_host_dsa_key.pub
> -rw-------  1 Administrator None  982 Jan 18 13:43 /etc/ssh_host_key
> -rw-r--r--  1 Administrator None  646 Jan 18 13:43 /etc/ssh_host_key.pub
> -rw-------  1 Administrator None 1675 Jan 18 13:43 /etc/ssh_host_rsa_key
> -rw-r--r--  1 Administrator None  401 Jan 18 13:43 /etc/ssh_host_rsa_key.pub
> -rw-r--r--  1 Administrator None 2830 Jan 18 13:44 /etc/sshd_config
> 

> In all servers I'm using the "Administrator" account. The only difference
> between these 4 servers is that 2 of them are Domain Controllers and the
> other 2 are members of this domain. In the servers where the ssh-host-config
> script works perfectly all of them are standalone servers.
> 
> So the question is: Why the Administrator can't change/chown the owner of
> the /etc/ssh* files to SYSTEM?

Because your are bound by the laws of ntfs access control entrys. Having rights to write to a file doesn't mean you are allowed to change its owner. You need permissions to change the directory the files are in.
And getting this right is easier in windows than in cygwin.
Use cacls to look at etc and the files.


 



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/