DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:message-id:date:from:mime-version:to:subject
	:references:in-reply-to:content-type; q=dns; s=default; b=vXOnJj
	BtPuulwgMR05uteORvCffXLWQD7TPgFltzP0/BgKMb0EhSCuT8od8hRzcDjrl5bK
	GxwmjPMbe9GAaK12VXgNciwulrSP51Cl+ShsUPYK0vzDXwgi4WwjpSjBXpNFZUHt
	j4DP89m5k+bUfZywdU+3ZY8wqDbrA/BCoU/rI=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Message-ID: <54A1600F.7060700@nokia.com>
Date: Mon, 29 Dec 2014 16:07:11 +0200
From: Ilya Dogolazky <ilya DOT dogolazky AT nokia DOT com>
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.3.0
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: SSHd configuration problems (System error 1376)
References: <1418434328946-113637 DOT post AT n5 DOT nabble DOT com> <548C3162 DOT 6040500 AT cornell DOT edu> <5499711C DOT 6060500 AT nokia DOT com> <54998980 DOT 4080801 AT cornell DOT edu> <54A10DBF DOT 6010507 AT nokia DOT com> <54A1517B DOT 4080802 AT cornell DOT edu>
In-Reply-To: <54A1517B.4080802@cornell.edu>
Content-Type: multipart/mixed; boundary="------------060502070408090107070805"

--------------060502070408090107070805
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit

Hi Ken!

I followed your advise:
1) Reinstalled windows again
2) Started setup_x86-64.exe from cygwin web site
3) Changed two things in the package list:
  a) Changed version of package cygwin to 1.7.34.003
  b) Marked package "ssh" to be installed
4) After installation started terminal (icon right click -> run as admin)
5) Typed "ssh-host-config -y"
6) Copied the output and attached to this e-mail

The same problem as before:
   System error 1376 has occurred.
   The specified local group does not exist.
   Adding user 'cyg_server' to local group 'root' failed!

:-(

By the way, very first message is quite funny: "it seems your account 
does not have these privileges". According to windows UI my account (the 
only one on this fresh installed machine) is an administrative one.

Cheers,

Ilya Dogolazky


--------------060502070408090107070805
Content-Type: text/x-log;
 name="ssh-host-config-y.log"
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
 filename="ssh-host-config-y.log"

$ ssh-host-config -y

*** Warning: Running this script typically requires administrator privileges!
*** Warning: However, it seems your account does not have these privileges.
*** Warning: Here's the list of groups in your user token:

    None
    root
    Users

*** Warning: This usually means you're running this script from a non-admin
*** Warning: desktop session, or in a non-elevated shell under UAC control.

*** Warning: Make sure you have the appropriate privileges right now,
*** Warning: otherwise parts of this script will probably fail!

*** Query: Are you sure you want to continue?  (Say "no" if you're not sure
*** Query: you have the required privileges) (yes/no) yes

*** Info: Generating missing SSH host keys
ssh-keygen: generating new host keys: RSA1 RSA DSA ECDSA ED25519
*** Info: Creating default /etc/ssh_config file
*** Info: Creating default /etc/sshd_config file

*** Info: StrictModes is set to 'yes' by default.
*** Info: This is the recommended setting, but it requires that the POSIX
*** Info: permissions of the user's home directory, the user's .ssh
*** Info: directory, and the user's ssh key files are tight so that
*** Info: only the user has write permissions.
*** Info: On the other hand, StrictModes don't work well with default
*** Info: Windows permissions of a home directory mounted with the
*** Info: 'noacl' option, and they don't work at all if the home
*** Info: directory is on a FAT or FAT32 partition.
*** Query: Should StrictModes be used? (yes/no) yes

*** Info: Privilege separation is set to 'sandbox' by default since
*** Info: OpenSSH 6.1.  This is unsupported by Cygwin and has to be set
*** Info: to 'yes' or 'no'.
*** Info: However, using privilege separation requires a non-privileged account
*** Info: called 'sshd'.
*** Info: For more info on privilege separation read /usr/share/doc/openssh/README.privsep.
*** Query: Should privilege separation be used? (yes/no) yes
*** Info: Note that creating a new user requires that the current account have
*** Info: Administrator privileges.  Should this script attempt to create a
*** Query: new local account 'sshd'? (yes/no) yes
*** Info: Updating /etc/sshd_config file

*** Query: Do you want to install sshd as a service?
*** Query: (Say "no" if it is already installed as a service) (yes/no) yes
*** Query: Enter the value of CYGWIN for the daemon: []
*** Info: On Windows Server 2003, Windows Vista, and above, the
*** Info: SYSTEM account cannot setuid to other users -- a capability
*** Info: sshd requires.  You need to have or to create a privileged
*** Info: account.  This script will help you do so.

*** Info: It's not possible to use the LocalSystem account for services
*** Info: that can change the user id without an explicit password
*** Info: (such as passwordless logins [e.g. public key authentication]
*** Info: via sshd) when having to create the user token from scratch.
*** Info: For more information on this requirement, see
*** Info: https://cygwin.com/cygwin-ug-net/ntsec.html#ntsec-nopasswd1

*** Info: If you want to enable that functionality, it's required to create
*** Info: a new account with special privileges (unless such an account
*** Info: already exists). This account is then used to run these special
*** Info: servers.

*** Info: Note that creating a new user requires that the current account
*** Info: have Administrator privileges itself.

*** Info: No privileged account could be found.

*** Info: This script plans to use 'cyg_server'.
*** Info: 'cyg_server' will only be used by registered services.
*** Query: Create new privileged user account 'W4\cyg_server' (Cygwin name: 'cyg_server')? (yes/no) yes
*** Info: Please enter a password for new user cyg_server.  Please be sure
*** Info: that this password matches the password rules given on your system.
*** Info: Entering no password will exit the configuration.
*** Query: Please enter the password:
*** Query: Reenter:

*** Info: User 'cyg_server' has been created with password 'xx'.
*** Info: If you change the password, please remember also to change the
*** Info: password for the installed services which use (or will soon use)
*** Info: the 'cyg_server' account.

System error 1376 has occurred.

The specified local group does not exist.

*** Warning: Adding user 'cyg_server' to local group 'root' failed!
*** Warning: Please add 'cyg_server' to local group 'root' before
*** Warning: starting any of the services which depend upon this user!
*** ERROR: There was a serious problem creating a privileged user.
*** Query: Do you want to proceed anyway? (yes/no) yes

*** Info: The sshd service has been installed under the 'cyg_server'
*** Info: account.  To start the service now, call `net start sshd' or
*** Info: `cygrunsrv -S sshd'.  Otherwise, it will start automatically
*** Info: after the next reboot.

*** Warning: Host configuration exited with 1 errors or warnings!
*** Warning: Make sure that all problems reported are fixed,
*** Warning: then re-run ssh-host-config.


--------------060502070408090107070805
Content-Type: text/plain; charset=us-ascii

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
--------------060502070408090107070805--