X-Recipient: archive-cygwin AT delorie DOT com
X-SWARE-Spam-Status: No, hits=-2.4 required=5.0 	tests=AWL,BAYES_00,SPF_HELO_PASS
X-Spam-Check-By: sourceware.org
Message-ID: <4A28189F.7060902@cygwin.com>
Date: Thu, 04 Jun 2009 14:55:27 -0400
From: "Larry Hall (Cygwin)" <reply-to-list-only-lh AT cygwin DOT com>
Reply-To: cygwin AT cygwin DOT com
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.21) Gecko/20090320 Remi/2.0.0.21-1.fc8.remi Lightning/0.9 Thunderbird/2.0.0.21 Mnenhy/0.7.5.0
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: Cygwin SSH  Multiple Users
References: <6CC1F30947381149A9DA2FA21F51A6D83EC7982A AT WW001E1ERLMM21 DOT ww001 DOT siemens DOT net>  <B7DBD9CB-DD24-45F0-810F-F667D9025C8C AT bitmover DOT com>  <6CC1F30947381149A9DA2FA21F51A6D83EC799DB AT WW001E1ERLMM21 DOT ww001 DOT siemens DOT net>  <E77814B3-F9DE-4734-BBA0-6C7ADCB875DC AT bitmover DOT com>  <20090603155242 DOT GC22513 AT calimero DOT vinschen DOT de> <6CC1F30947381149A9DA2FA21F51A6D83EC79A58 AT WW001E1ERLMM21 DOT ww001 DOT siemens DOT net>
In-Reply-To: <6CC1F30947381149A9DA2FA21F51A6D83EC79A58@WW001E1ERLMM21.ww001.siemens.net>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Holikar, Sachin (ext) wrote:
> Hello,
> 
> Thanks for the info Corinna but ultimately we aint able to start the service somehow. And only way to start is to start with the user mac using /usr/sbin/sshd.
> But then no other user can connect via ssh to this machine. The work around we provided was copiying the ssh public keys of the user say admin and then
> connecting from remote machine using ssh -l mac winxp and then admin gets the ssh access as mac. 
> But now the requirement is to be able to login as different users to this machine and we are stuck up. Really confused what went wrong.
> Any hint will be much appreciated.

Once you've started "sshd.exe" from the command line as come non-privileged
user (and this includes the Administrator account or members of that group
in this context), you won't be able to start "sshd.exe" as another user
(even as "SYSTEM" on XP) without changing the ownership of many files
that "sshd.exe" uses/needs.  See the email archives and/or the contents of
'ssh-host-config' for details.  Also, it is quite expected that "sshd.exe"
running as a non-privileged user cannot switch users with public key
authentication.  That's why "ssh-host-config" sets up "sshd.exe" to run
under the privileged "SYSTEM" account on XP.  If you don't want to do this
for some reason, you should read the openssh readme in
'/usr/share/doc/Cygwin' for the required privileges of the user running
"sshd.exe" that would permit this.  Of course, doing this really puts you
in the realm of "you know what you're doing" so you may not get allot of
willing responses from queries to this list with problems you have if you
go this route. ;-)

Good luck,

-- 
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/