X-Recipient: archive-cygwin AT delorie DOT com X-Spam-Check-By: sourceware.org From: "Oren Elrad" To: Subject: Proper Windows Permissions for SFTP Users Date: Sun, 4 May 2008 20:29:54 -0400 Message-ID: <000001c8ae47$23ad4c50$6b07e4f0$@edu> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0001_01C8AE25.9C9BAC50" X-Mailer: Microsoft Office Outlook 12.0 Content-Language: en-us Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com ------=_NextPart_000_0001_01C8AE25.9C9BAC50 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi, Running WinXP Pro, local users only and I find that only admin users can launched an SFTP session (see below for the precise error message). This must be a permissions problem since changing a user to admin allows them to SFTP; change them back to "limited" and they cannot. I tried the following: (1) Logged on as the user in question, ran cmd (per Cygwin instructions), logged out (2) Set permissions for 'Users' on C:\cygwin and C:\Windows to allow "Read and Execute", "List Folder Contents" and "Read" recursively (replace all child permissions with these) per recommendation of some other posts on the mailing list. (3) chmod 755 /usr/sbin/* /usr/bin/* (4) Restarted sshd I don't know what other directories I should allow. Any insight would be wonderful. Thanks in advance, Oren Attached: cygcheck.out (produced by cygcheck -s -v -r) Appendix: Error Message Received by non-admin users (snipped) produced with sftp -vv: debug2: we sent a password packet, wait for reply debug1: Authentication succeeded (password). debug2: fd 4 setting O_NONBLOCK debug1: channel 0: new [client-session] debug2: channel 0: send open debug1: Entering interactive session. debug2: callback start debug2: client_session2_setup: id 0 debug1: Sending environment. debug1: Sending env LANG = en_US.UTF-8 debug2: channel 0: request env confirm 0 debug1: Sending subsystem: sftp debug2: channel 0: request subsystem confirm 1 debug2: fd 3 setting TCP_NODELAY debug2: callback done debug2: channel 0: open confirm rwindow 0 rmax 32768 debug2: channel 0: rcvd adjust 2097152 debug1: client_input_channel_req: channel 0 rtype exit-status reply 0 debug2: channel 0: rcvd eof debug2: channel 0: output open -> drain debug2: channel 0: obuf empty debug2: channel 0: close_write debug2: channel 0: output drain -> closed debug2: channel 0: rcvd close debug2: channel 0: close_read debug2: channel 0: input open -> closed debug2: channel 0: almost dead debug2: channel 0: gc: notify user debug2: channel 0: gc: user detached debug2: channel 0: send close debug2: channel 0: is dead debug2: channel 0: garbage collecting debug1: channel 0: free: client-session, nchannels 1 debug1: fd 0 clearing O_NONBLOCK debug1: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.3 seconds debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0 debug1: Exit status 53 Connection closed ------=_NextPart_000_0001_01C8AE25.9C9BAC50 Content-Type: application/octet-stream; name="cygcheck.out" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="cygcheck.out" Cygwin Configuration Diagnostics Current System Time: Sun May 04 19:24:40 2008 Windows XP Professional Ver 5.1 Build 2600 Service Pack 2 Path: C:\cygwin\usr\local\bin C:\cygwin\bin C:\cygwin\bin C:\cygwin\usr\X11R6\bin c:\WINDOWS\system32 c:\WINDOWS c:\WINDOWS\System32\Wbem c:\Program Files\Subversion\bin c:\Program Files\Microsoft Platform SDK for Windows Server 2003 R2\Bin\ c:\Program Files\Microsoft Platform SDK for Windows Server 2003 R2\Bin\Win= NT\ c:\documents and settings\oren\desktop\animate\release\ C:\cygwin\bin c:\Program Files\MiKTeX 2.7\miktex\bin c:\Program Files\Microsoft Platform SDK for Windows Server 2003 R2\Bin\ c:\Program Files\Microsoft Platform SDK for Windows Server 2003 R2\Bin\Win= NT\ c:\Program Files\SSH Communications Security\SSH Secure Shell c:\program files\NAMD_2.6_Win32-i686 c:\program files\WinEdt Team\WinEdt Output from C:\cygwin\bin\id.exe (nontsec) UID: 1003(Oren) GID: 513(None) 513(None) 544(Administrators) 545(Users) Output from C:\cygwin\bin\id.exe (ntsec) UID: 1003(Oren) GID: 513(None) 513(None) 544(Administrators) 545(Users) SysDir: C:\WINDOWS\system32 WinDir: C:\WINDOWS USER =3D 'Oren' PWD =3D '/home/Oren' CYGWIN =3D 'ntsec tty' HOME =3D '/home/Oren' MAKE_MODE =3D 'unix' MSSDK =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 2003 = R2\.' HOMEPATH =3D '\Documents and Settings\Oren' MANPATH =3D '/usr/local/man:/usr/share/man:/usr/man::/usr/ssl/man' APPDATA =3D 'C:\Documents and Settings\Oren\Application Data' HOSTNAME =3D 'capsid' MSTOOLS =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 200= 3 R2\.' TERM =3D 'cygwin' PROCESSOR_IDENTIFIER =3D 'x86 Family 6 Model 15 Stepping 2, GenuineIntel' WINDIR =3D 'C:\WINDOWS' VS80COMNTOOLS =3D 'C:\Program Files\Microsoft Visual Studio 8\Common7\Tools= \' OLDPWD =3D '/usr/bin' USERDOMAIN =3D 'CAPSID' OS =3D 'Windows_NT' ALLUSERSPROFILE =3D 'C:\Documents and Settings\All Users' SVN_EDITOR =3D 'C:\WINDOWS\notepad.exe' APR_ICONV_PATH =3D 'C:\Program Files\Subversion\iconv' !:: =3D '::\' TEMP =3D '/cygdrive/c/DOCUME~1/Oren/LOCALS~1/Temp' COMMONPROGRAMFILES =3D 'C:\Program Files\Common Files' LIB =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 2003 R2= \Lib\.' USERNAME =3D 'Oren' PROCESSOR_LEVEL =3D '6' FP_NO_HOST_CHECK =3D 'NO' SYSTEMDRIVE =3D 'C:' USERPROFILE =3D 'C:\Documents and Settings\Oren' ULTRAMON_LANGDIR =3D 'C:\Program Files\UltraMon\Resources\en' PS1 =3D '\[\e]0;\w\a\]\n\[\e[32m\]\u@\h \[\e[33m\]\w\[\e[0m\]\n\$ ' LOGONSERVER =3D '\\CAPSID' PROCESSOR_ARCHITECTURE =3D 'x86' !C: =3D 'C:\cygwin\bin' SHLVL =3D '1' PATHEXT =3D '.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH' HOMEDRIVE =3D 'C:' PROMPT =3D '$P$G' INETSDK =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 200= 3 R2\.' COMSPEC =3D 'C:\WINDOWS\system32\cmd.exe' TMP =3D '/cygdrive/c/DOCUME~1/Oren/LOCALS~1/Temp' SYSTEMROOT =3D 'C:\WINDOWS' PRINTER =3D 'Theory Lounge' CVS_RSH =3D '/bin/ssh' PROCESSOR_REVISION =3D '0f02' BASEMAKE =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 20= 03 R2\Include\BKOffice.Mak' INFOPATH =3D '/usr/local/info:/usr/share/info:/usr/info:' PROGRAMFILES =3D 'C:\Program Files' BKOFFICE =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 20= 03 R2\.' NUMBER_OF_PROCESSORS =3D '2' INCLUDE =3D 'C:\Program Files\Microsoft Platform SDK for Windows Server 200= 3 R2\Include\.' SESSIONNAME =3D 'Console' COMPUTERNAME =3D 'CAPSID' _ =3D '/usr/bin/cygcheck' HKEY_CURRENT_USER\Software\Cygnus Solutions HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\mounts v2 HKEY_CURRENT_USER\Software\Cygnus Solutions\Cygwin\Program Options HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2 (default) =3D '/cygdrive' cygdrive flags =3D 0x00000022 HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/ (default) =3D 'C:\cygwin' flags =3D 0x0000000a HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/usr/bin (default) =3D 'C:\cygwin/bin' flags =3D 0x0000000a HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/usr/lib (default) =3D 'C:\cygwin/lib' flags =3D 0x0000000a HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\Program Options c: hd NTFS 476921Mb 20% CP CS UN PA FC=20=20=20=20=20 d: cd N/A N/A=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20 e: hd NTFS 381551Mb 41% CP CS UN PA FC Backups g: cd N/A N/A=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20 h: net SftpDriveFS 48828Mb 0% CP CS PA SFTPDRIVE l: net SftpDriveFS 48828Mb 0% CP CS PA SFTPDRIVE u: net SftpDriveFS 48828Mb 0% CP CS PA SFTPDRIVE C:\cygwin / system binmode C:\cygwin/bin /usr/bin system binmode C:\cygwin/lib /usr/lib system binmode . /cygdrive system binmode,cygdrive Found: C:\cygwin\bin\awk.exe Found: C:\cygwin\bin\bash.exe Found: C:\cygwin\bin\cat.exe Found: C:\cygwin\bin\cp.exe Not Found: cpp (good!) Not Found: crontab Found: C:\cygwin\bin\find.exe Not Found: gcc Not Found: gdb Found: C:\cygwin\bin\grep.exe Found: C:\cygwin\bin\kill.exe Not Found: ld Found: C:\cygwin\bin\ls.exe Not Found: make Found: C:\cygwin\bin\mv.exe Not Found: patch Not Found: perl Found: C:\cygwin\bin\rm.exe Found: C:\cygwin\bin\sed.exe Found: C:\cygwin\bin\ssh.exe Found: C:\cygwin\bin\sh.exe Found: C:\cygwin\bin\tar.exe Found: C:\cygwin\bin\test.exe Not Found: vi Not Found: vim 7k 2003/10/19 C:\cygwin\bin\cygcrypt-0.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygcrypt-0.dll" v0.0 ts=3D2003/10/19 3:57 1059k 2007/03/29 C:\cygwin\bin\cygcrypto-0.9.8.dll - os=3D4.0 img=3D1.0 sy= s=3D4.0 "cygcrypto-0.9.8.dll" v0.0 ts=3D2007/3/29 6:13 40k 2006/11/15 C:\cygwin\bin\cygform-8.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygform-8.dll" v0.0 ts=3D2006/11/15 2:06 25k 2008/01/04 C:\cygwin\bin\cyghistory6.dll - os=3D4.0 img=3D1.0 sys=3D= 4.0 "cyghistory6.dll" v0.0 ts=3D2008/1/3 22:31 976k 2006/10/22 C:\cygwin\bin\cygiconv-2.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygiconv-2.dll" v0.0 ts=3D2006/10/22 19:44 31k 2005/11/20 C:\cygwin\bin\cygintl-3.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygintl-3.dll" v0.0 ts=3D2005/11/19 21:04 31k 2006/10/23 C:\cygwin\bin\cygintl-8.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygintl-8.dll" v0.0 ts=3D2006/10/22 20:12 21k 2006/11/15 C:\cygwin\bin\cygmenu-8.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygmenu-8.dll" v0.0 ts=3D2006/11/15 2:05 20k 2006/12/21 C:\cygwin\bin\cygminires.dll - os=3D4.0 img=3D1.1 sys=3D4= .0 "cygminires.dll" v0.0 ts=3D2006/12/21 0:07 67k 2006/11/15 C:\cygwin\bin\cygncurses++-8.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygncurses++-8.dll" v0.0 ts=3D2006/11/15 2:13 237k 2006/11/15 C:\cygwin\bin\cygncurses-8.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygncurses-8.dll" v0.0 ts=3D2006/11/15 2:02 12k 2006/11/15 C:\cygwin\bin\cygpanel-8.dll - os=3D4.0 img=3D1.0 sys=3D4= .0 "cygpanel-8.dll" v0.0 ts=3D2006/11/15 2:04 150k 2008/04/25 C:\cygwin\bin\cygpcre-0.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygpcre-0.dll" v0.0 ts=3D2008/4/24 20:30 303k 2008/04/25 C:\cygwin\bin\cygpcrecpp-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygpcrecpp-0.dll" v0.0 ts=3D2008/4/24 20:30 7k 2008/04/25 C:\cygwin\bin\cygpcreposix-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygpcreposix-0.dll" v0.0 ts=3D2008/4/24 20:30 155k 2008/01/04 C:\cygwin\bin\cygreadline6.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygreadline6.dll" v0.0 ts=3D2008/1/3 22:31 217k 2007/03/29 C:\cygwin\bin\cygssl-0.9.8.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygssl-0.9.8.dll" v0.0 ts=3D2007/3/29 6:13 140k 2007/09/16 C:\cygwin\bin\cygsvn_client-1-0.dll - os=3D4.0 img=3D1.0 = sys=3D4.0 "cygsvn_client-1-0.dll" v0.0 ts=3D2007/9/16 14:50 32k 2007/09/16 C:\cygwin\bin\cygsvn_delta-1-0.dll - os=3D4.0 img=3D1.0 s= ys=3D4.0 "cygsvn_delta-1-0.dll" v0.0 ts=3D2007/9/16 14:45 26k 2007/09/16 C:\cygwin\bin\cygsvn_diff-1-0.dll - os=3D4.0 img=3D1.0 sy= s=3D4.0 "cygsvn_diff-1-0.dll" v0.0 ts=3D2007/9/16 14:49 14k 2007/09/16 C:\cygwin\bin\cygsvn_fs-1-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygsvn_fs-1-0.dll" v0.0 ts=3D2007/9/16 14:47 128k 2007/09/16 C:\cygwin\bin\cygsvn_fs_base-1-0.dll - os=3D4.0 img=3D1.0= sys=3D4.0 "cygsvn_fs_base-1-0.dll" v0.0 ts=3D2007/9/16 14:46 87k 2007/09/16 C:\cygwin\bin\cygsvn_fs_fs-1-0.dll - os=3D4.0 img=3D1.0 s= ys=3D4.0 "cygsvn_fs_fs-1-0.dll" v0.0 ts=3D2007/9/16 14:46 11k 2007/09/16 C:\cygwin\bin\cygsvn_ra-1-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygsvn_ra-1-0.dll" v0.0 ts=3D2007/9/16 14:49 93k 2007/09/16 C:\cygwin\bin\cygsvn_ra_dav-1-0.dll - os=3D4.0 img=3D1.0 = sys=3D4.0 "cygsvn_ra_dav-1-0.dll" v0.0 ts=3D2007/9/16 14:49 20k 2007/09/16 C:\cygwin\bin\cygsvn_ra_local-1-0.dll - os=3D4.0 img=3D1.= 0 sys=3D4.0 "cygsvn_ra_local-1-0.dll" v0.0 ts=3D2007/9/16 14:47 61k 2007/09/16 C:\cygwin\bin\cygsvn_ra_svn-1-0.dll - os=3D4.0 img=3D1.0 = sys=3D4.0 "cygsvn_ra_svn-1-0.dll" v0.0 ts=3D2007/9/16 14:47 110k 2007/09/16 C:\cygwin\bin\cygsvn_repos-1-0.dll - os=3D4.0 img=3D1.0 s= ys=3D4.0 "cygsvn_repos-1-0.dll" v0.0 ts=3D2007/9/16 14:47 159k 2007/09/16 C:\cygwin\bin\cygsvn_subr-1-0.dll - os=3D4.0 img=3D1.0 sy= s=3D4.0 "cygsvn_subr-1-0.dll" v0.0 ts=3D2007/9/16 14:45 175k 2007/09/16 C:\cygwin\bin\cygsvn_wc-1-0.dll - os=3D4.0 img=3D1.0 sys= =3D4.0 "cygsvn_wc-1-0.dll" v0.0 ts=3D2007/9/16 14:49 22k 2008/02/24 C:\cygwin\bin\cygwrap-0.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygwrap-0.dll" v0.0 ts=3D2008/2/23 2:03 65k 2006/10/16 C:\cygwin\bin\cygz.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygz.dll" v0.0 ts=3D2006/10/15 21:10 1829k 2008/04/17 C:\cygwin\bin\cygwin1.dll - os=3D4.0 img=3D1.0 sys=3D4.0 "cygwin1.dll" v0.0 ts=3D2008/4/17 6:11 Cygwin DLL version info: DLL version: 1.5.25 DLL epoch: 19 DLL bad signal mask: 19005 DLL old termios: 5 DLL malloc env: 28 API major: 0 API minor: 156 Shared data: 4 DLL identifier: cygwin1 Mount registry: 2 Cygnus registry name: Cygnus Solutions Cygwin registry name: Cygwin Program options name: Program Options Cygwin mount registry name: mounts v2 Cygdrive flags: cygdrive flags Cygdrive prefix: cygdrive prefix Cygdrive default prefix:=20 Build date: Thu Apr 17 12:11:03 CEST 2008 CVS tag: cr-0x5f1 Shared id: cygwin1S4 Service : sshd Display name : CYGWIN sshd Current State : Running Controls Accepted : Stop Command : /usr/sbin/sshd -D stdin path : /dev/null stdout path : /var/log/sshd.log stderr path : /var/log/sshd.log Environment : CYGWIN=3D"ntsec tty"=20 Process Type : Own Process Startup : Automatic Dependencies : tcpip Account : LocalSystem Cygwin Package Information Last downloaded files to: C:\Documents and Settings\Oren\local settings\temp Last downloaded files from: http://www.gtlib.gatech.edu/pub/cygwin Package Version _update-info-dir 00730-1 alternatives 1.3.30c-1 ash 20040127-1 base-files 3.6-1 base-passwd 2.2-1 bash 3.2.39-19 coreutils 6.10-1 crypt 1.1-1 cygrunsrv 1.34-1 cygwin 1.5.25-12 cygwin-doc 1.4-3 editrights 1.01-2 findutils 4.3.13-1 gawk 3.1.6-1 grep 2.5.1a-4 gzip 1.3.12-1 libiconv2 1.11-1 libintl3 0.14.5-1 libintl8 0.15-1 libncurses8 5.5-3 libpcre0 7.6-2 libreadline6 5.2.12-10 libwrap0 7.6-4 login 1.9-5 man 1.6d-2 minires 1.01-1 openssh 5.0p1-1 openssl 0.9.8e-3 rebase 2.4.2-1 run 1.1.9-1 sed 4.1.5-1 subversion 1.4.5-1 tar 1.19-1 tcl-db4.5 4.5.20.2-2 tcltk 20080420-1 tcp_wrappers 7.6-2 termcap 20021106-2 terminfo 5.5_20061104-1 texinfo 4.8a-1 tzcode 2007h-2 which 2.18-2 zlib 1.2.3-2 Use -h to see help about each section ------=_NextPart_000_0001_01C8AE25.9C9BAC50 Content-Type: text/plain; charset=us-ascii -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/ ------=_NextPart_000_0001_01C8AE25.9C9BAC50--