X-Spam-Check-By: sourceware.org X-IronPort-AV: i="4.02,155,1139202000"; d="txt'?scan'208"; a="1998713345:sNHT54942076" From: "Mark A. Ziesemer" To: Subject: Re: sshd_conf and AllowGroups - how to make work with non-primary groups? Date: Tue, 28 Feb 2006 23:45:29 -0600 Message-ID: <006601c63cf3$5933bc00$2a52a8c0@ziesemermark> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0067_01C63CC1.0E994C00" Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com ------=_NextPart_000_0067_01C63CC1.0E994C00 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit "Igor Peshansky" wrote in message news:Pine DOT GSO DOT 4 DOT 63 DOT 0602280917280 DOT 4185 AT access1 DOT cims DOT nyu DOT edu... > On Mon, 27 Feb 2006, Mark A. Ziesemer wrote: > >> I, too, am trying to lock down ssh access. Using OpenSSH's AllowGroups >> configuration option looks like it would fit my needs perfectly, but it >> doesn't work! More specifically, it ends up denying all users, unless >> the >> user's PRIMARY group (as defined in /etc/passwd) is within AllowGroups. >> >> I already found and read the following related posts, none of which >> actually >> resolve the issue: >> http://www.cygwin.com/ml/cygwin/2003-03/msg00128.html >> http://www.cygwin.com/ml/cygwin/2000-03/msg00591.html >> http://thread.gmane.org/gmane.os.cygwin/73007 ("sshd_conf and local >> groups" >> started 12/31/2005) >> >> Using AllowUsers works as expected - but this is an administrative >> nightmare. Ideally, I'd like to create a group called "SshUsers" and >> set "AllowGroups SshUsers". This works, but only if I set the needed >> user accounts in /etc/passwd to use this as their primary group. Some >> users need their primary group to remain otherwise for other reasons... >> >> I'm guessing this is more of an issue with the Cygwin user commands than >> it is with the OpenSSH implementation. I DID run both mkpasswd and >> mkgroup, and both my /etc/passwd and /etc/group files are populated. >> However, running "groups myuser" or "id -Gn myuser" returns only the >> primary group - "Domain Users". The results are identical whether >> running bash locally or through an ssh connection. >> >> I'm currently running "CYGWIN_NT-5.2 z 1.5.20s(0.154/4/2) 20060227 >> 13:07:35 i686 Cygwin", but have been able to reproduce this back to >> 1.5.18, etc... >> >> Any assistance would be greatly appreciated - thanks! > > Let's start here: > >> Problem reports: http://cygwin.com/problems.html > > In particular, for the group to be recognized by Cygwin, it needs to be in > /etc/group. I would guess that you're trying to set up a domain group... > You didn't say exactly what mkgroup options you used to update /etc/group, > so it may simply be that you're missing the necessary groups there (and > thus Cygwin is unable to determine group membership). But a proper > problem report based on the above guidelines (one that includes an > attached output of "cygcheck -svr" on your system) would allow us to track > this down further. Requested cygcheck attached, along with my sshd_config, group, and passwd files. (Files are from reproducing the issue on another box for privacy concerns, which explains why the Cygwin version is slightly different from my original post.) In this example, all accounts are local, with no domain involved. Additionally, the following is logged to my Application Event Log: Source: sshd, Category: None, Event ID: 0, User: NT AUTHORITY\SYSTEM ... The following information is part of the event: sshd: PID 1504: User MyUser from TestBox not allowed because none of user's groups are listed in AllowGroups. I do believe I misunderstood how the "groups" and "id" commands were working. I see that running "groups" without the username displays all groups for the current user (not all groups on the system), where "group MyUser" displays only the primary group. Some test output: MyUser AT winxpsp2base ~ $ groups None root Administrators Users SshUsers MyUser AT winxpsp2base ~ $ id uid=1004(MyUser) gid=513(None) groups=0(root),513(None),544(Administrators),545(Users),1005(SshUsers) MyUser AT winxpsp2base ~ $ groups MyUser MyUser : None MyUser AT winxpsp2base ~ $ id -Gn MyUser None I'm guessing the OpenSSH sshd service must run some form of the later pair, which returns only the primary group, and not all associated Windows groups... Thanks! -- Mark A. Ziesemer > Igor > -- > http://cs.nyu.edu/~pechtcha/ > |\ _,,,---,,_ pechtcha AT cs DOT nyu DOT edu | igor AT watson DOT ibm DOT com > ZZZzz /,`.-'`' -. ;-;;,_ Igor Peshansky, Ph.D. (name changed!) > |,4- ) )-,_. ,\ ( `'-' old name: Igor Pechtchanski > '---''(_/--' `-'\_) fL a.k.a JaguaR-R-R-r-r-r-.-.-. Meow! > > "Las! je suis sot... -Mais non, tu ne l'es pas, puisque tu t'en rends > compte." > "But no -- you are no fool; you call yourself a fool, there's proof enough > in > that!" -- Rostand, "Cyrano de Bergerac" > ------=_NextPart_000_0067_01C63CC1.0E994C00 Content-Type: text/plain; name="cygcheck.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="cygcheck.txt" Cygwin Configuration Diagnostics Current System Time: Tue Feb 28 23:13:49 2006 Windows XP Professional Ver 5.1 Build 2600 Service Pack 2 Path: C:\cygwin\usr\local\bin C:\cygwin\bin C:\cygwin\bin C:\cygwin\usr\X11R6\bin c:\WINDOWS\system32 c:\WINDOWS c:\WINDOWS\System32\Wbem Output from C:\cygwin\bin\id.exe (nontsec) UID: 1004(MyUser) GID: 513(None) 0(root) 513(None) 544(Administrators) 545(Users) 1005(SshUsers) Output from C:\cygwin\bin\id.exe (ntsec) UID: 1004(MyUser) GID: 513(None) 0(root) 513(None) 544(Administrators) 545(Users) 1005(SshUsers) SysDir: C:\WINDOWS\system32 WinDir: C:\WINDOWS USER =3D 'MyUser' PWD =3D '/home/MyUser' HOME =3D '/home/MyUser' MAKE_MODE =3D 'unix' HOMEPATH =3D '\Documents and Settings\MyUser' MANPATH =3D '/usr/local/man:/usr/share/man:/usr/man::/usr/ssl/man' APPDATA =3D 'C:\Documents and Settings\MyUser\Application Data' HOSTNAME =3D 'winxpsp2base' TERM =3D 'cygwin' PROCESSOR_IDENTIFIER =3D 'x86 Family 15 Model 2 Stepping 8, GenuineIntel' WINDIR =3D 'C:\WINDOWS' OLDPWD =3D '/usr/bin' USERDOMAIN =3D 'WINXPSP2BASE' OS =3D 'Windows_NT' ALLUSERSPROFILE =3D 'C:\Documents and Settings\All Users' TEMP =3D '/cygdrive/c/DOCUME~1/MyUser/LOCALS~1/Temp' COMMONPROGRAMFILES =3D 'C:\Program Files\Common Files' USERNAME =3D 'MyUser' PROCESSOR_LEVEL =3D '15' FP_NO_HOST_CHECK =3D 'NO' SYSTEMDRIVE =3D 'C:' USERPROFILE =3D 'C:\Documents and Settings\MyUser' PS1 =3D '\[\e]0;\w\a\]\n\[\e[32m\]\u@\h \[\e[33m\]\w\[\e[0m\]\n\$ ' LOGONSERVER =3D '\\WINXPSP2BASE' PROCESSOR_ARCHITECTURE =3D 'x86' !C: =3D 'C:\cygwin\bin' SHLVL =3D '1' PATHEXT =3D '.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH' HOMEDRIVE =3D 'C:' PROMPT =3D '$P$G' COMSPEC =3D 'C:\WINDOWS\system32\cmd.exe' TMP =3D '/cygdrive/c/DOCUME~1/MyUser/LOCALS~1/Temp' SYSTEMROOT =3D 'C:\WINDOWS' CVS_RSH =3D '/bin/ssh' PROCESSOR_REVISION =3D '0208' INFOPATH =3D '/usr/local/info:/usr/share/info:/usr/info:' PROGRAMFILES =3D 'C:\Program Files' NUMBER_OF_PROCESSORS =3D '1' SESSIONNAME =3D 'Console' COMPUTERNAME =3D 'WINXPSP2BASE' _ =3D '/usr/bin/cygcheck' POSIXLY_CORRECT =3D '1' HKEY_CURRENT_USER\Software\Cygnus Solutions HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\mounts v2 HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\Program Options HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2 (default) =3D '/cygdrive' cygdrive flags =3D 0x00000022 HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/ (default) =3D 'C:\cygwin' flags =3D 0x0000000a HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/usr/bin (default) =3D 'C:\cygwin/bin' flags =3D 0x0000000a HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/usr/lib (default) =3D 'C:\cygwin/lib' flags =3D 0x0000000a HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\Program Options a: fd N/A N/A=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20 c: hd NTFS 8181Mb 31% CP CS UN PA FC=20=20=20=20=20 d: cd CDFS 589Mb 100% CS UN NRMEVOL_EN C:\cygwin / system binmode C:\cygwin/bin /usr/bin system binmode C:\cygwin/lib /usr/lib system binmode . /cygdrive system binmode,cygdrive Found: C:\cygwin\bin\awk.exe Found: C:\cygwin\bin\bash.exe Found: C:\cygwin\bin\cat.exe Found: C:\cygwin\bin\cp.exe Not Found: cpp (good!) Not Found: crontab Found: C:\cygwin\bin\find.exe Not Found: gcc Not Found: gdb Found: C:\cygwin\bin\grep.exe Found: C:\cygwin\bin\kill.exe Not Found: ld Found: C:\cygwin\bin\ls.exe Not Found: make Found: C:\cygwin\bin\mv.exe Not Found: patch Not Found: perl Found: C:\cygwin\bin\rm.exe Found: C:\cygwin\bin\sed.exe Found: C:\cygwin\bin\ssh.exe Found: C:\cygwin\bin\sh.exe Found: C:\cygwin\bin\tar.exe Found: C:\cygwin\bin\test.exe Not Found: vi Not Found: vim 56k 2005/07/09 C:\cygwin\bin\cygbz2-1.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygbz2-1.dll" v0.0 ts=3D2005/7/9 0:09 7k 2005/11/20 C:\cygwin\bin\cygcharset-1.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygcharset-1.dll" v0.0 ts=3D2005/11/19 20:24 7k 2003/10/19 C:\cygwin\bin\cygcrypt-0.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygcrypt-0.dll" v0.0 ts=3D2003/10/19 2:57 1108k 2005/10/17 C:\cygwin\bin\cygcrypto-0.9.7.dll - os=3D4.0 img=3D1.0 sy= s=3D4.0 "cygcrypto-0.9.7.dll" v0.0 ts=3D2005/10/17 4:16 1047k 2005/10/11 C:\cygwin\bin\cygcrypto-0.9.8.dll - os=3D4.0 img=3D1.0 sy= s=3D4.0 "cygcrypto-0.9.8.dll" v0.0 ts=3D2005/10/11 7:47 40k 2005/09/29 C:\cygwin\bin\cygform-8.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygform-8.dll" v0.0 ts=3D2005/9/28 21:15 45k 2001/04/25 C:\cygwin\bin\cygform5.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygform5.dll" v0.0 ts=3D2001/4/25 0:28 35k 2002/01/09 C:\cygwin\bin\cygform6.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygform6.dll" v0.0 ts=3D2002/1/9 0:03 48k 2003/08/09 C:\cygwin\bin\cygform7.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygform7.dll" v0.0 ts=3D2003/8/9 4:25 28k 2003/07/20 C:\cygwin\bin\cyggdbm-3.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cyggdbm-3.dll" v0.0 ts=3D2003/7/20 2:58 30k 2003/08/11 C:\cygwin\bin\cyggdbm-4.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cyggdbm-4.dll" v0.0 ts=3D2003/8/10 21:12 19k 2003/03/22 C:\cygwin\bin\cyggdbm.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cyggdbm.dll" v0.0 ts=3D2002/2/19 21:05 15k 2003/07/20 C:\cygwin\bin\cyggdbm_compat-3.dll - os=3D4.0 img=3D1.0 s= ys=3D4.0 "cyggdbm_compat-3.dll" v0.0 ts=3D2003/7/20 3:00 15k 2003/08/11 C:\cygwin\bin\cyggdbm_compat-4.dll - os=3D4.0 img=3D1.0 s= ys=3D4.0 "cyggdbm_compat-4.dll" v0.0 ts=3D2003/8/10 21:13 17k 2001/06/28 C:\cygwin\bin\cyghistory4.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cyghistory4.dll" v0.0 ts=3D2001/1/6 22:34 29k 2003/08/10 C:\cygwin\bin\cyghistory5.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cyghistory5.dll" v0.0 ts=3D2003/8/10 18:16 24k 2006/02/18 C:\cygwin\bin\cyghistory6.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cyghistory6.dll" v0.0 ts=3D2006/2/18 0:03 947k 2005/11/20 C:\cygwin\bin\cygiconv-2.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygiconv-2.dll" v0.0 ts=3D2005/11/19 20:24 22k 2001/12/13 C:\cygwin\bin\cygintl-1.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygintl-1.dll" v0.0 ts=3D2001/12/13 3:28 37k 2003/08/10 C:\cygwin\bin\cygintl-2.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygintl-2.dll" v0.0 ts=3D2003/8/10 16:50 31k 2005/11/20 C:\cygwin\bin\cygintl-3.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygintl-3.dll" v0.0 ts=3D2005/11/19 20:04 21k 2001/06/20 C:\cygwin\bin\cygintl.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygintl.dll" v0.0 ts=3D2001/6/20 12:09 21k 2005/09/29 C:\cygwin\bin\cygmenu-8.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygmenu-8.dll" v0.0 ts=3D2005/9/28 21:15 26k 2001/04/25 C:\cygwin\bin\cygmenu5.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygmenu5.dll" v0.0 ts=3D2001/4/25 0:27 20k 2002/01/09 C:\cygwin\bin\cygmenu6.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygmenu6.dll" v0.0 ts=3D2002/1/9 0:03 29k 2003/08/09 C:\cygwin\bin\cygmenu7.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygmenu7.dll" v0.0 ts=3D2003/8/9 4:25 21k 2004/10/22 C:\cygwin\bin\cygminires.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygminires.dll" v0.0 ts=3D2004/10/22 15:28 67k 2005/09/29 C:\cygwin\bin\cygncurses++-8.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygncurses++-8.dll" v0.0 ts=3D2005/9/28 21:16 156k 2001/04/25 C:\cygwin\bin\cygncurses++5.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygncurses++5.dll" v0.0 ts=3D2001/4/25 0:29 175k 2002/01/09 C:\cygwin\bin\cygncurses++6.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygncurses++6.dll" v0.0 ts=3D2002/1/9 0:03 226k 2005/09/29 C:\cygwin\bin\cygncurses-8.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygncurses-8.dll" v0.0 ts=3D2005/9/28 21:02 226k 2001/04/25 C:\cygwin\bin\cygncurses5.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cygncurses5.dll" v0.0 ts=3D2001/4/25 0:17 202k 2002/01/09 C:\cygwin\bin\cygncurses6.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cygncurses6.dll" v0.0 ts=3D2002/1/9 0:03 224k 2003/08/09 C:\cygwin\bin\cygncurses7.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cygncurses7.dll" v0.0 ts=3D2003/8/9 4:24 11k 2005/09/29 C:\cygwin\bin\cygpanel-8.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygpanel-8.dll" v0.0 ts=3D2005/9/28 21:15 15k 2001/04/25 C:\cygwin\bin\cygpanel5.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygpanel5.dll" v0.0 ts=3D2001/4/25 0:27 12k 2002/01/09 C:\cygwin\bin\cygpanel6.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygpanel6.dll" v0.0 ts=3D2002/1/9 0:03 19k 2003/08/09 C:\cygwin\bin\cygpanel7.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygpanel7.dll" v0.0 ts=3D2003/8/9 4:24 176k 2005/09/06 C:\cygwin\bin\cygpcre-0.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygpcre-0.dll" v0.0 ts=3D2005/9/6 15:49 299k 2005/09/06 C:\cygwin\bin\cygpcrecpp-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygpcrecpp-0.dll" v0.0 ts=3D2005/9/6 16:26 6k 2005/09/06 C:\cygwin\bin\cygpcreposix-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygpcreposix-0.dll" v0.0 ts=3D2005/9/6 16:26 22k 2002/06/09 C:\cygwin\bin\cygpopt-0.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygpopt-0.dll" v0.0 ts=3D2002/6/9 0:45 108k 2001/06/28 C:\cygwin\bin\cygreadline4.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygreadline4.dll" v0.0 ts=3D2001/1/6 22:34 148k 2003/08/10 C:\cygwin\bin\cygreadline5.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygreadline5.dll" v0.0 ts=3D2003/8/10 18:16 152k 2006/02/18 C:\cygwin\bin\cygreadline6.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygreadline6.dll" v0.0 ts=3D2006/2/18 0:03 231k 2005/10/17 C:\cygwin\bin\cygssl-0.9.7.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygssl-0.9.7.dll" v0.0 ts=3D2005/10/17 4:16 215k 2005/10/11 C:\cygwin\bin\cygssl-0.9.8.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygssl-0.9.8.dll" v0.0 ts=3D2005/10/11 7:47 65k 2005/08/23 C:\cygwin\bin\cygz.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygz.dll" v0.0 ts=3D2005/8/22 21:03 1763k 2006/01/20 C:\cygwin\bin\cygwin1.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygwin1.dll" v0.0 ts=3D2006/1/20 12:28 Cygwin DLL version info: DLL version: 1.5.19 DLL epoch: 19 DLL bad signal mask: 19005 DLL old termios: 5 DLL malloc env: 28 API major: 0 API minor: 150 Shared data: 4 DLL identifier: cygwin1 Mount registry: 2 Cygnus registry name: Cygnus Solutions Cygwin registry name: Cygwin Program options name: Program Options Cygwin mount registry name: mounts v2 Cygdrive flags: cygdrive flags Cygdrive prefix: cygdrive prefix Cygdrive default prefix:=20 Build date: Fri Jan 20 13:28:43 EST 2006 CVS tag: cr-0x5ef Shared id: cygwin1S4 Service : sshd Display name : CYGWIN sshd Current State : Running Controls Accepted : Stop Command : /usr/sbin/sshd -D stdin path : /dev/null stdout path : /var/log/sshd.log stderr path : /var/log/sshd.log Environment : CYGWIN=3D"ntsec tty bin"=20 Process Type : Own Process Startup : Automatic Dependencies : tcpip Account : LocalSystem Cygwin Package Information Last downloaded files to: \\z\m$\Downloads\Cygwin Last downloaded files from: ftp://sourceware.mirrors.tds.net/pub/sourceware= .org/cygwin Package Version _update-info-dir 00377-1 alternatives 1.3.20a-2 ash 20040127-3 base-files 3.7-1 base-passwd 2.2-1 bash 3.0-14 bzip2 1.0.3-1 coreutils 5.94-1 crypt 1.1-1 cygrunsrv 1.12-1 cygutils 1.2.10-1 cygwin 1.5.19-4 cygwin-doc 1.4-3 diffutils 2.8.7-1 editrights 1.01-1 findutils 4.2.27-1 gawk 3.1.5-2 gdbm 1.8.3-7 grep 2.5.1a-2 groff 1.18.1-2 gzip 1.3.5-1 less 381-1 libbz2_1 1.0.3-1 libcharset1 1.9.2-2 libgdbm 1.8.0-5 libgdbm-devel 1.8.3-7 libgdbm3 1.8.3-3 libgdbm4 1.8.3-7 libiconv 1.9.2-2 libiconv2 1.9.2-2 libintl 0.10.38-3 libintl1 0.10.40-1 libintl2 0.12.1-3 libintl3 0.14.5-1 libncurses5 5.2-1 libncurses6 5.2-8 libncurses7 5.3-4 libncurses8 5.4-4 libpcre0 6.3-1 libpopt0 1.6.4-4 libreadline4 4.1-2 libreadline5 4.3-5 libreadline6 5.1-4 login 1.9-7 man 1.5p-1 minires 1.00-1 mktemp 1.5-3 ncurses 5.4-4 openssh 4.3p2-1 openssl 0.9.8a-1 openssl097 0.9.7i-1 run 1.1.6-1 sed 4.1.5-1 tar 1.15.1-3 termcap 20050421-1 terminfo 5.4_20041009-1 texinfo 4.8-1 which 1.7-1 zlib 1.2.3-1 Use -h to see help about each section ------=_NextPart_000_0067_01C63CC1.0E994C00 Content-Type: text/plain; name="group.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="group.txt" root:S-1-5-32-544:0: SYSTEM:S-1-5-18:18: None:S-1-5-21-507921405-1682526488-682003330-513:513: Administrators:S-1-5-32-544:544: Backup Operators:S-1-5-32-551:551: Guests:S-1-5-32-546:546: Network Configuration Operators:S-1-5-32-556:556: Power Users:S-1-5-32-547:547: Remote Desktop Users:S-1-5-32-555:555: Replicator:S-1-5-32-552:552: Users:S-1-5-32-545:545: HelpServicesGroup:S-1-5-21-507921405-1682526488-682003330-1001:1001: SshUsers:S-1-5-21-507921405-1682526488-682003330-1005:1005: ------=_NextPart_000_0067_01C63CC1.0E994C00 Content-Type: text/plain; name="passwd.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="passwd.txt" SYSTEM:*:18:544:,S-1-5-18:: Administrators:*:544:544:,S-1-5-32-544:: Administrator:unused_by_nt/2000/xp:500:513:U-WINXPSP2BASE\Administrator,S-1= -5-21-507921405-1682526488-682003330-500:/home/Administrator:/bin/bash ASPNET:unused_by_nt/2000/xp:1003:513:ASP.NET Machine Account,U-WINXPSP2BASE= \ASPNET,S-1-5-21-507921405-1682526488-682003330-1003:/home/ASPNET:/bin/bash Guest:unused_by_nt/2000/xp:501:513:U-WINXPSP2BASE\Guest,S-1-5-21-507921405-= 1682526488-682003330-501:/home/Guest:/bin/bash HelpAssistant:unused_by_nt/2000/xp:1000:513:Remote Desktop Help Assistant A= ccount,U-WINXPSP2BASE\HelpAssistant,S-1-5-21-507921405-1682526488-682003330= -1000:/home/HelpAssistant:/bin/bash MyUser:unused_by_nt/2000/xp:1004:513:MyUser,U-WINXPSP2BASE\MyUser,S-1-5-21-= 507921405-1682526488-682003330-1004:/home/MyUser:/bin/bash SUPPORT_388945a0:unused_by_nt/2000/xp:1002:513:CN=3DMicrosoft Corporation,L= =3DRedmond,S=3DWashington,C=3DUS,U-WINXPSP2BASE\SUPPORT_388945a0,S-1-5-21-5= 07921405-1682526488-682003330-1002:/home/SUPPORT_388945a0:/bin/bash sshd:unused_by_nt/2000/xp:1006:513:sshd privsep,U-WINXPSP2BASE\sshd,S-1-5-2= 1-507921405-1682526488-682003330-1006:/var/empty:/bin/false ------=_NextPart_000_0067_01C63CC1.0E994C00 Content-Type: text/plain; name="sshd_config.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="sshd_config.txt" # $OpenBSD: sshd_config,v 1.73 2005/12/06 22:38:28 reyk Exp $ # This is the sshd server system-wide configuration file. See # sshd_config(5) for more information. # This sshd was compiled with PATH=3D/bin:/usr/sbin:/sbin:/usr/bin # The strategy used for options in the default sshd_config shipped with # OpenSSH is to specify options with their default value where # possible, but leave them commented. Uncommented options change a # default value. AllowGroups SshUsers Port 22 #Protocol 2,1 #AddressFamily any #ListenAddress 0.0.0.0 #ListenAddress :: # HostKey for protocol version 1 #HostKey /etc/ssh_host_key # HostKeys for protocol version 2 #HostKey /etc/ssh_host_rsa_key #HostKey /etc/ssh_host_dsa_key # Lifetime and size of ephemeral version 1 server key #KeyRegenerationInterval 1h #ServerKeyBits 768 # Logging # obsoletes QuietMode and FascistLogging #SyslogFacility AUTH #LogLevel INFO # Authentication: #LoginGraceTime 2m #PermitRootLogin yes StrictModes no #MaxAuthTries 6 #RSAAuthentication yes #PubkeyAuthentication yes #AuthorizedKeysFile .ssh/authorized_keys # For this to work you will also need host keys in /etc/ssh_known_hosts #RhostsRSAAuthentication no # similar for protocol version 2 #HostbasedAuthentication no # Change to yes if you don't trust ~/.ssh/known_hosts for # RhostsRSAAuthentication and HostbasedAuthentication #IgnoreUserKnownHosts no # Don't read the user's ~/.rhosts and ~/.shosts files #IgnoreRhosts yes # To disable tunneled clear text passwords, change to no here! #PasswordAuthentication yes #PermitEmptyPasswords no # Change to no to disable s/key passwords #ChallengeResponseAuthentication yes # Kerberos options #KerberosAuthentication no #KerberosOrLocalPasswd yes #KerberosTicketCleanup yes #KerberosGetAFSToken no # GSSAPI options #GSSAPIAuthentication no #GSSAPICleanupCredentials yes # Set this to 'yes' to enable PAM authentication, account processing,=20 # and session processing. If this is enabled, PAM authentication will=20 # be allowed through the ChallengeResponseAuthentication mechanism.=20 # Depending on your PAM configuration, this may bypass the setting of=20 # PasswordAuthentication, PermitEmptyPasswords, and=20 # "PermitRootLogin without-password". If you just want the PAM account and= =20 # session checks to run without PAM authentication, then enable this but se= t=20 # ChallengeResponseAuthentication=3Dno #UsePAM no #AllowTcpForwarding yes #GatewayPorts no #X11Forwarding no #X11DisplayOffset 10 #X11UseLocalhost yes #PrintMotd yes #PrintLastLog yes #TCPKeepAlive yes #UseLogin no UsePrivilegeSeparation yes #PermitUserEnvironment no #Compression delayed #ClientAliveInterval 0 #ClientAliveCountMax 3 #UseDNS yes #PidFile /var/run/sshd.pid #MaxStartups 10 #PermitTunnel no # no default banner path #Banner /some/path # override default of no subsystems Subsystem sftp /usr/sbin/sftp-server ------=_NextPart_000_0067_01C63CC1.0E994C00 Content-Type: text/plain; charset=us-ascii -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/ ------=_NextPart_000_0067_01C63CC1.0E994C00--