X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:date:message-id:subject:from:to
	:content-type; q=dns; s=default; b=yj4GQ9Yj2f0ncAEb/Mr2089NafC3K
	dyOeyAZiO97bYsvl/u4NOnxQKIYahxMgQF0ZJYUHHGpY/QlBFqjaiZn8717MDPGZ
	8n7P+d2clMWeu3crppKKtnnxQuqEINT2SAKe+PfuzuZp1RVyyguJJBuohYD2JgY6
	sLCJhkN1WKH1Lc=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:date:message-id:subject:from:to
	:content-type; s=default; bh=M/LyMC0PpkgSn3vdg/foZTNfIro=; b=II1
	OqJl6n7Czsh+FHYKDY2qlp6cuso4W6YR4i9FP9mL1QAnH31hMt/IqnM3kD+WKlcW
	L2E+6eC8kGPtikfItAKpDXTnbPa7EpiNL3g4R7KFocn/DWATB1F11ejmR+mt24LV
	i10di+Zwf3o6F9PX5H1yMWz6J1OtShbnxwYe/crI=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
X-Spam-SWARE-Status: No, score=0.9 required=5.0 tests=BAYES_50,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,RCVD_IN_HOSTKARMA_YE,RDNS_NONE,SPF_PASS autolearn=no version=3.3.1
MIME-Version: 1.0
X-Received: by 10.180.94.106 with SMTP id db10mr5365469wib.38.1375976357814; Thu, 08 Aug 2013 08:39:17 -0700 (PDT)
Date: Thu, 8 Aug 2013 11:39:17 -0400
Message-ID: <CAKJLuP_CY0v48A9B_iXX-=pvGbmUG0UxfLmb+_u=ZMS55_cz-A@mail.gmail.com>
Subject: Messed up permissions on /var ?
From: David Lee Lambert <davidl AT lmert DOT com>
To: cygwin AT cygwin DOT com
Content-Type: text/plain; charset=ISO-8859-1

I recently "migrated" a Cygwin instance from Windows XP to Windows 7
(wanted to save a bit of external bandwidth versus running the
installer again, also had a lot of custom stuff under /usr/local and
so forth).  X works fine.  I can't get sshd to work (started as a
daemon it would present a host key but not accept any password to log
in),  and I suspect I may have made things worse trying to fix it.

Trying to run the SSH daemon from a Cygwin command prompt started with
"Run as administrator...", I get the following output...

$ /usr/sbin/sshd -ddd
debug2: load_server_config: filename /etc/sshd_config
debug2: load_server_config: done config len = 253
debug2: parse_server_config: config /etc/sshd_config len 253
debug3: /etc/sshd_config:13 setting Port 22
debug3: /etc/sshd_config:41 setting StrictModes no
debug3: /etc/sshd_config:50 setting AuthorizedKeysFile .ssh/authorized_keys
debug3: /etc/sshd_config:102 setting UsePrivilegeSeparation sandbox
debug3: /etc/sshd_config:118 setting Subsystem sftp     /usr/sbin/sftp-server
debug1: sshd version OpenSSH_6.2, OpenSSL 1.0.1e 11 Feb 2013
debug3: Incorrect RSA1 identifier
debug1: read PEM private key done: type RSA
debug1: private host key: #0 type 1 RSA
debug3: Incorrect RSA1 identifier
debug1: read PEM private key done: type DSA
debug1: private host key: #1 type 2 DSA
debug3: Incorrect RSA1 identifier
debug1: read PEM private key done: type ECDSA
debug1: private host key: #2 type 3 ECDSA
/var/empty must be owned by root and not group or world-writable.


From that same terminal here are the permissions on /var and /var/empty...

dllamber AT IBM-635c7e0ffd0 /var
$ ls -ld /var /var/empty
drwx---r-x+ 1 Administrator None 0 Aug  8 11:26 /var
drwxr-xr-x+ 1 SYSTEM        None 0 Aug  8 07:16 /var/empty

From my "regular user" account, Cygwin terminal, here's what I get:

dllamber AT IBM-635c7e0ffd0 ~
$ ls -l /var /var/empty
ls: cannot open directory /var: Permission denied
/var/empty:
total 0


From "cmd.exe" run with "Run as administrator..." here's what I see...

C:\Cygwin>cacls var
C:\Cygwin\var IBM-635C7E0FFD0\Administrator:F
              IBM-635C7E0FFD0\None:(DENY)(special access:)
                                   FILE_READ_DATA
                                   FILE_READ_EA
                                   FILE_EXECUTE

              IBM-635C7E0FFD0\None:(special access:)
                                   READ_CONTROL
                                   SYNCHRONIZE
                                   FILE_READ_ATTRIBUTES

              Everyone:R
              IBM-635C7E0FFD0\dllamber:(OI)(CI)R


C:\Cygwin>cacls var\empty
Access is denied.


From "cmd.exde" run as a regular user, I see exactly the same thing.

If I open Explorer and try to browse to "C:\Cygwin\var", I get a "You
don't currently have permissions to access this folder" dialog.  If I
hit "Continue" and enter my password for UAC, I get "You have been
denied permission to access this folder".


Any advice?


-- 
David L. Lambert
Member IEEE, ACM (david DOT lee DOT lambert AT acm DOT org)
IM: davidleelambert (Yahoo!) or lamber45 AT cse DOT msu DOT edu (MSN)

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple