X-Recipient: archive-cygwin AT delorie DOT com
X-SWARE-Spam-Status: No, hits=0.6 required=5.0	tests=AWL,BAYES_00,RP_MATCHES_RCVD
X-Spam-Check-By: sourceware.org
From: Clayton Evans <CEvans AT joshitech DOT com>
To: "cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com>
Date: Wed, 5 Oct 2011 17:43:45 -0500
Subject: openSSH
Message-ID: <C1D4084E4F215A4F890E70E3675DF633491EC860A2@JTISBS8.joshitech.local>
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by delorie.com id p95Mi9Ln003850

I have four questions that are not clear to after reading /usr/doc/Cygwin/openssh.README.

1) When running ssh-host-config, what is the correct string to enter for the CYGWIN environment variable?
2) When running ssh-host-config, is it necessary to use "pwd" as the password for the user sshd_server?  If yes, how does one change this if the password has been entered as something other than "pwd".
3) Does one run ssh-user-config on the host machine or the client machine?
4) What files from the ssh-user-config is it necessary to move to the other machine?

My problem is that I am not able to successfully authenticate ssh from the client to the host.  I am running sshd on a Windows 7 machine (host machine), the client machine is Windows XP.  I have run ssh-host-config and ssh-user-config on the host machine.  Attempting to ssh from the client has successfully moved/created ~/.ssh/known_hosts to the client.  The RSA, DSA and ECDSA keys fail ssh falls into password authentication.  My domain network password does not work.  I have copied the .ssh directory from the host to the client and have tried running ssh-user-config on the host. And moving id_rsa.pub to the host .ssh directory as authorized_keys.

$ ssh -v jti031
OpenSSH_5.8p1, OpenSSL 0.9.8r 8 Feb 2011
debug1: Reading configuration data /etc/ssh_config
debug1: Connecting to jti031 [192.168.58.29] port 22.
debug1: Connection established.
debug1: identity file /home/cevans/.ssh/id_rsa type 1
debug1: identity file /home/cevans/.ssh/id_rsa-cert type -1
debug1: identity file /home/cevans/.ssh/id_dsa type 2
debug1: identity file /home/cevans/.ssh/id_dsa-cert type -1
debug1: identity file /home/cevans/.ssh/id_ecdsa type 3
debug1: identity file /home/cevans/.ssh/id_ecdsa-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.8
debug1: match: OpenSSH_5.8 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.8
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ECDSA 03:5a:cf:bc:63:44:be:23:d3:a1:92:c1:df:f5:46:3b
debug1: Host 'jti031' is known and matches the ECDSA host key.
debug1: Found key in /home/cevans/.ssh/known_hosts:1
debug1: ssh_ecdsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/cevans/.ssh/id_rsa
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Offering DSA public key: /home/cevans/.ssh/id_dsa
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Offering ECDSA public key: /home/cevans/.ssh/id_ecdsa
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Next authentication method: password
cevans AT jti031's password:
debug1: Authentications that can continue: publickey,password,keyboard-interactive
Permission denied, please try again.
cevans AT jti031's password:
Received disconnect from 192.168.58.29: 2: Too many authentication failures for
Cevans

/etc/passwd on the client does have the following line
cevans:unused:11149:10513:U-JOSHITECH\cevans,S-1-5-21-645071284-784862239-476427275-1149:/home/cevans:/bin/bash

/etc/passwd on the host does have the following line.
CEvans:unused:11149:544:U-JOSHITECH\cevans,S-1-5-21-645071284-784862239-476427275-1149:/cygdrive/d/home/CEvans:/bin/bash

Clayton Evans

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple