X-Recipient: archive-cygwin AT delorie DOT com
X-Spam-Check-By: sourceware.org
Message-ID: <491DB0B7.30505@cygwin.com>
Date: Fri, 14 Nov 2008 12:09:11 -0500
From: "Larry Hall (Cygwin)" <reply-to-list-only-lh AT cygwin DOT com>
Reply-To: cygwin AT cygwin DOT com
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.16) Gecko/20080723 Fedora/2.0.0.16-1.fc8 Lightning/0.9 Thunderbird/2.0.0.16 Mnenhy/0.7.5.0
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: Cygwin sshd key auth doesn't work (seteuid 500: Permission denied)
References: <491D925E DOT 8000506 AT criptos DOT com>
In-Reply-To: <491D925E.8000506@criptos.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Tomàs Núñez wrote:
> Hi
> 
> I am trying to connect to a Cygwin sshd server using key authentication, 
> but I can't. When I use password authentication, it works great, but I 
> need to run some unattended processes, so key auth is mandatory.
> 
> When I try to connect, I get that:
> user AT workstation:~/.ssh$ ssh administrator AT server -o 

<snip>

> sshd: PID 8272: fatal: seteuid 500: Permission denied.

Did you configure your SSH installation with ssh-host-config?  How
about your user with ssh-user-config?

> When I run ssh daemon as a user, in order to debug, I get that:
> user AT server ~/$ /usr/sbin/sshd.exe -d

Ugh!  This suggests that you have not read OpenSSH readme in
/usr/share/doc/Cygwin.  You can't do this without screwing up all
the permissions on various directories and files that SSH checks
the permissions of.

> debug1: temporarily_use_uid: 500/513 (e=400/401)
> seteuid 500: Permission denied
> debug1: do_cleanup
> 
> I've also tried to run sshd with strace, but I've found nothing (logs 
> are 412KB, that's why I don't attach them).
> 
> Does anyone use key auth with cygwin sshd server?

Of course!

> Any hint about this issue?

Sure.  See the problem reporting guidelines below.  You've told us
what you're having problems with and it's obvious that you misunderstand
what's necessary to get pubkey authentication to switch users but what's
not clear is how you've set this up, what you're working with, and what
your intentions are.  I'd recommend that you review the docs and email
archives to come up to speed.  Then, if you're still having problems,
contact the list again with a follow-up problem report.

> Problem reports:       http://cygwin.com/problems.html




-- 
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/