X-Recipient: archive-cygwin AT delorie DOT com
X-SWARE-Spam-Status: No, hits=-1.6 required=5.0 	tests=AWL,BAYES_00,J_CHICKENPOX_27,J_CHICKENPOX_66
X-Spam-Check-By: sourceware.org
Message-ID: <782781.34739.qm@web33501.mail.mud.yahoo.com>
References: <32517 DOT 57262 DOT qm AT web33505 DOT mail DOT mud DOT yahoo DOT com> <4ABA9468 DOT 6060408 AT cygwin DOT com> <32405 DOT 5122 DOT qm AT web33504 DOT mail DOT mud DOT yahoo DOT com> <4ABA99A9 DOT 6080103 AT cygwin DOT com> <510384 DOT 1152 DOT qm AT web33508 DOT mail DOT mud DOT yahoo DOT com> <4ABAD5CB DOT 1020208 AT cygwin DOT com> <140340 DOT 33560 DOT qm AT web33502 DOT mail DOT mud DOT yahoo DOT com> <4ABB9291 DOT 2090501 AT cygwin DOT com>
Date: Thu, 24 Sep 2009 09:27:19 -0700 (PDT)
From: Dave M <dindenver AT yahoo DOT com>
Subject: Re: sftp on a Windows 2003 server
To: cygwin AT cygwin DOT com
In-Reply-To: <4ABB9291.2090501@cygwin.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Larry,
  OK, so I removed everything, cleaned up the registry, emptied the recycle bin and rebooted. then I logged in with a local use that had local admin right and reionstalled.

Test AT S-EXSYSLOG01 ~
$ ssh-host-config
*** Query: Overwrite existing /etc/ssh_config file? (yes/no) yes
*** Info: Creating default /etc/ssh_config file
*** Query: Overwrite existing /etc/sshd_config file? (yes/no) yes
*** Info: Creating default /etc/sshd_config file
*** Info: Privilege separation is set to yes by default since OpenSSH 3.3.
*** Info: However, this requires a non-privileged account called 'sshd'.
*** Info: For more info on privilege separation read /usr/share/doc/openssh/READ
ME.privsep.
*** Query: Should privilege separation be used? (yes/no) yes
*** Warning: The permissions on the directory /var are not correct.
*** Warning: They must match the regexp d..x..x..[xt]
*** ERROR: Problem with /var directory. Exiting.

Test AT S-EXSYSLOG01 ~
$ ls -l /var
total 0
drwxrwx---+ 3 Test Users 0 Sep 24 10:13 cache
drwxr-xr-x+ 2 Test None  0 Sep 24 10:17 empty
drwxrwx---+ 3 Test Users 0 Sep 24 10:13 lib
drwxrwxr-x+ 2 Test Users 0 Sep 24 10:17 log
drwxrwx---+ 2 Test Users 0 Sep 24 10:13 run
drwxrwx---+ 2 Test Users 0 Sep 24 10:13 tmp

Test AT S-EXSYSLOG01 ~
$

  I saw something that said I should try 'chown system:system /var/empty', then 'chmod 755 /var/empty' should I try that, or what would you suggest?
Dave M




----- Original Message ----
Sent: Thursday, September 24, 2009 9:38:57 AM
Subject: Re: sftp on a Windows 2003 server

On 09/24/2009 10:22 AM, Dave M wrote:
> $ ssh-host-config
> *** Query: Overwrite existing /etc/ssh_config file? (yes/no) yes
> *** Info: Creating default /etc/ssh_config file
> *** Query: Overwrite existing /etc/sshd_config file? (yes/no) yes
> *** Info: Creating default /etc/sshd_config file
> *** Info: Privilege separation is set to yes by default since OpenSSH 3.3.
> *** Info: However, this requires a non-privileged account called 'sshd'.
> *** Info: For more info on privilege separation read /usr/share/doc/openssh/READ
> ME.privsep.
> *** Query: Should privilege separation be used? (yes/no) yes
> *** Warning: The permissions on the directory /var are not correct.
> *** Warning: They must match the regexp d..x..x..[xt]
> *** ERROR: Problem with /var directory. Exiting.

Do you have a local administrator you could log in as instead of your domain
user?  My guess is that your domain user is at least part of all these permission
problems.  If you don't have a local domain user, perhaps it makes sense to
get your user and group represented in the '/etc/passwd' and '/etc/group' files
instead.  Alternatively, you may find a 1.7 install smooths over some of these
difficulties as well, as Julio mentioned.

-- Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
> Q: Are you sure?
>> A: Because it reverses the logical flow of conversation.
>>> Q: Why is top posting annoying in email?

--
Problem reports:      http://cygwin.com/problems.html
FAQ:                  http://cygwin.com/faq/
Documentation:        http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple