X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:subject:to:references:from:message-id:date
	:mime-version:in-reply-to:content-type
	:content-transfer-encoding; q=dns; s=default; b=EEjCf+jJX+LbC0Qb
	j1FDjTD0g9hj8h/C184mUzVM0Aeh10qjaDIKMqJ47k1YQA0NmwTvaK5IdIp5W/V7
	7CbTPM3Qgbs0aaNVwQnFuTU14itXLetSVLI4RIjRtaHA2XXc9HgqwS38OgJs82rJ
	oEu4MZbTjBw6gDcZ+bTe/76xN2A=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:subject:to:references:from:message-id:date
	:mime-version:in-reply-to:content-type
	:content-transfer-encoding; s=default; bh=D7bJt4olZtGUnwzqIrAQdi
	G1OLI=; b=iuY19BjfOW+44x6DXsb6RzDgehZy1CUHx57+ExMSAP+NbDiIAnnSr/
	jPGlYtKUUaKnvvQ1OmNqGxM3nCJEHiXkNbGlBOPLd2PVStr++l37KQLTnk4aSMxG
	l8gJYSTZ23xC/JpVgN5B8wgaKAtmFXX5hlh0gd3XCs2cJWEHk27fM=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Spam-SWARE-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM,HTML_MESSAGE,RCVD_IN_DNSWL_NONE,SPF_PASS autolearn=ham version=3.3.1 spammy=H*c:alternative, password, opened
X-HELO: mail-qt1-f175.google.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;        d=gmail.com; s=20161025;        h=subject:to:references:from:message-id:date:user-agent:mime-version         :in-reply-to:content-language;        bh=7OuOQIIUu4Kpz3Pl2A0jMqY5KagFevYMgVxFDIx99EU=;        b=hs7m/4CQRfGlEVHAHSjFG7F4ovSKWPpqgpoQH6X5WRo65AxKJ1PnUL59ePN9s1bInd         q9ULodj0ayTUdLU3ffylQCrlEaVcL9SGFOQ+ndI8E78DwxMcIZ0wJmTY13KD9GuxiCpp         Yte0kDHS9SGCmVaCyN+dAh6H5/dNrSJTmZXEPie6gcxc8kjRZp54qtbDoqRy/+75le3P         3mlPQ+xvxFLyStBjAdpKDJKzhVHhrrAXbKifFBNSZv4OSswk94bmD3fedO4I45YUtaOk         ReAXTWhOlBOH+SuuJPJzOwWERzescwzXazFsrwWm0FPRWu78su/kTEgqdFwCkov7Hf7j         ZLYg==
Subject: Re: cygwin sshd vs Win 10 'built-in' openSSh server
To: cygwin AT cygwin DOT com
References: <CAFKs89Frr_jE8fryf75=3R_YkNO64OiWYJ8ToeFVxLLfxP+=UA AT mail DOT gmail DOT com> <b6da84b8-a157-8ca8-0bc9-42f4e7743ea4 AT SystematicSw DOT ab DOT ca>
From: Evan Cooch <evan DOT cooch AT gmail DOT com>
Message-ID: <156ab00b-2d9f-9fa3-f7fc-3a8b9dddffe1@gmail.com>
Date: Thu, 21 Nov 2019 15:49:31 -0500
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0
MIME-Version: 1.0
In-Reply-To: <b6da84b8-a157-8ca8-0bc9-42f4e7743ea4@SystematicSw.ab.ca>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
X-IsSubscribed: yes

Thanks very much -- good points.

On 11/21/2019 3:47 PM, Brian Inglis wrote:
> On 2019-11-21 09:07, Evan Cooch wrote:
>> I've been using the cygwin sshd as a service under Windows (XP -> 7), for
>> *many* years. However, with the pending deprecatin of Win 7, and the IT guys
>> at my institution nagging me to upgrade to Win 10, that raises a question --
>> are there relative pros/cons of sticking with cygwin sshd as a service under
>> Win 10 (assuming that is still possible), or enabling the openssh server that
>> is 'hidden' (relatively speaking) in Win 10 Pro an Enterprise (not so sure
>> about Win 10 Home)?
>>
>> My preference would be to stick with cygwin (since I'm familiar with it, and
>> can tweak things as I need), but I'm uncertain as to how well it would play
>> with Win 10, which might be 'happier' if the MS approved openssh approach was
>> used.
>>
>> Thoughts/opinions?  I have a couple of Win 10 installs in virtual machines,
>> and will try testing both approaches at some point, but wanted to collate
>> some information before that point.
> With Cygwin you have documentation, familiarity, prompt support and fixes, and
> support of standard cypher suites and key sizes.
>
> What do you know about MS "hidden" ssh server and client, and interop with the
> systems to which you want to connect?
>
> What can you expect by way of support from your IT guys and MS?
>
> Some wiki notes are less than informative and may be worrysome:
> https://github.com/PowerShell/Win32-OpenSSH/wiki/SSH-remote-sessions-on-Windows
> "A remote session opened via password authentication has the user credentials
> attached to it and hence is capable of outbound authentication as the user.
> A remote session opened via key based authentication does not have associated
> user credentials and hence is not capable of outbound authentication as the
> user. This is by design and goes by the rules of standard Windows security."
> https://github.com/PowerShell/Win32-OpenSSH/wiki/ssh.exe-examples
>


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple