X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:message-id:date:from:mime-version:to:subject
	:references:in-reply-to:content-type:content-transfer-encoding;
	 q=dns; s=default; b=ASnwmGtxvCMlxZjWDaymO7bvY6OHvWJ0hbEpJRHTEB3
	0P7i+s4+5sqbKVdizbCqUxxwjAstIA0ZxUX9ZKwmMqWdck3EIMkMcBipifi7NPFj
	nSpAgaajMhsou9xzx0Q/ZSL2SHQekkBtJOhqO4Sl8f05lw2dSu98oxH4oiIFesI8
	=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:message-id:date:from:mime-version:to:subject
	:references:in-reply-to:content-type:content-transfer-encoding;
	 s=default; bh=4lUZvk73egyHfBfJLI27klPX4IQ=; b=fqadL8g8g4xC8E/EF
	7vx+sLOxCHtxpJnLV/FyijrCAWdWCUqVxISCDAjCxPsijzRn1iABOPO9VaXZyAvA
	plVh6476tetppNmiSdLgUq3ORyO2FrSf8dJzDeIa06BtYD378fKR5wUVNXZb/ggQ
	p/DV4T0GpryVn0rhrEgHOJdREE=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-0.6 required=5.0 tests=AWL,BAYES_00,SPF_PASS,T_RP_MATCHES_RCVD autolearn=ham version=3.3.2
X-HELO: mgw-sa01.nokia.com
Message-ID: <54A868A1.7030003@nokia.com>
Date: Sun, 04 Jan 2015 00:09:37 +0200
From: Ilya Dogolazky <ilya DOT dogolazky AT nokia DOT com>
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.3.0
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: [SOLUTION] Never ending SSHD story: offering public key terminates connection
References: <54A485DE DOT 1090802 AT nokia DOT com>
In-Reply-To: <54A485DE.1090802@nokia.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Nokia-AV: Clean
X-IsSubscribed: yes

Hello to all the SSHD users!

After reading the documentation at
https://cygwin.com/cygwin-ug-net/ntsec.html
I learned that there are 3 methods for implementing seteuid in cygwin.
The first and default method seems to be absolutely broken for now, so I 
switched to the 2nd method by calling the magic command "cyglsa-config".

Now my SSHD works (or, at least I have not found how to break it until now).

So here is a short summary, how to get SSHD working on a fresh installed 
windows 8.1 system (windows version is probably not so important, but I 
only tested it with 8.1).

1) Install windows
2) Install cygwin64 with package openssh
3) Open terminal "as admin"
4) $ ssh-host-congig -y (will FAIL)
5) $ net localgroup Administrators sshd /ADD
6) $ net localgroup Administrators cyg_server /ADD
7) $ cygrunsrv -S sshd
8) $ ssh localhost /bin/echo BLAH (password -> SUCCESS)
9) $ ssh-keygen.exe
10) $ ssh localhost /bin/echo BLAH (will FAIL now)
11) $ cyglsa-config
12) Reboot the machine now
13) $ ssh localhost /bin/echo BLAH (password -> SUCCESS)
14) $ cp .ssh/id_rsa.pub .ssh/authorized_keys
15) $ ssh localhost /bin/echo BLAH (works without password, DONE)

Dear CYGWIN developers! Please fix the whole system in such a way that 
SSHD will be installable and configurable in 5 minutes without any 
knowledge of windows internals, as it was years ago.

Cheers,

Ilya Dogolazky


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple