This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: "incorrect password" or "permission denied" when switching users


On Sat, 14 Feb 2004 Jeremy<at>Gagliardi<dot>com wrote:

> Installed straight off the Internet...
> Owner@Beast /
> $ uname -a
> CYGWIN_NT-5.1 Beast 1.5.7(0.109/3/2) 2004-01-30 19:32 i686 unknown unknown Cygwin
>
> I am running XP Home edition, and my administrative account is "Owner".
>
> I try to switch users.  `su - jjg` causes "incorrect password" message, and
> `login -f jjg` reveals "login: no shell: /bin/bash: Permission denied"
>
> When I do `strace login` I get this juicy message:
>   360 12676481 [main] login 1324 geterrno_from_win_error: unknown windows error 1314, setting errno to 13
>   218 12676699 [main] login 1324 spawn_guts: CreateProcess failed, Win32 error 1314

$ net helpmsg 1314
A required privilege is not held by the client.

Does this ring a bell?  More below.

> Here are the specifics:
> On XP, the users are as follows:
>   Owner - Computer administrator
>   jjg - Computer administrator - Password Protected
>   sshd - Limited account - Password Protected
>   Guest - Guest account is off
> In Cygwin:
> Owner@Beast /
> $ cat /etc/passwd
> SYSTEM:*:18:544:,S-1-5-18::
> Administrators:*:544:544:,S-1-5-32-544::
> Administrator:unused_by_nt/2000/xp:500:545:U-BEAST\Administrator,S-1-5-21-1615061138-891307005-2424629274-500:/home/Administrator:/bin/bash
> cron:unused_by_nt/2000/xp:1006:513:cron,U-BEAST\cron,S-1-5-21-1615061138-891307005-2424629274-1006:/home/cron:/bin/bash
> Guest:unused_by_nt/2000/xp:501:513:U-BEAST\Guest,S-1-5-21-1615061138-891307005-2424629274-501:/home/Guest:/bin/bash
> HelpAssistant:unused_by_nt/2000/xp:1005:513:Remote Desktop Help Assistant Account,U-BEAST\HelpAssistant,S-1-5-21-1615061138-891307005-2424629274-1005:/home/HelpAssistant:/bin/bash
> jjg:*:1010:545:Jeremy Gagliardi,U-BEAST\jjg,S-1-5-21-1615061138-891307005-2424629274-1010:/home/jjg:/bin/bash
> Owner:unused_by_nt/2000/xp:1003:545:U-BEAST\Owner,S-1-5-21-1615061138-891307005-2424629274-1003:/home/Owner:/bin/bash
> sshd:unused_by_nt/2000/xp:1007:513:sshd,U-BEAST\sshd,S-1-5-21-1615061138-891307005-2424629274-1007:/home/sshd:/bin/bash
> SUPPORT_388945a0:unused_by_nt/2000/xp:1002:513:CN=Microsoft Corporation,L=Redmond,S=Washington,C=US,U-BEAST\SUPPORT_388945a0,S-1-5-21-1615061138-891307005-2424629274-1002:/home/SUPPORT_388945a0:/bin/bash
> SUPPORT_fddfa904:unused_by_nt/2000/xp:1004:513:CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US,U-BEAST\SUPPORT_fddfa904,S-1-5-21-1615061138-891307005-2424629274-1004:/home/SUPPORT_fddfa904:/bin/bash

<OT>
I love the last two users...  Oh, what a great license does XP come with! :-)
</OT>

> Owner@Beast /
> $ cat /etc/group
> root:S-1-5-32-544:0:
> SYSTEM:S-1-5-18:18:
> None:S-1-5-21-1615061138-891307005-2424629274-513:513:
> Administrators:S-1-5-32-544:544:
> Guests:S-1-5-32-546:546:
> Users:S-1-5-32-545:545:
> HelpServicesGroup:S-1-5-21-1615061138-891307005-2424629274-1001:1001:
>
> Owner@Beast /
> $ ls -ld /home
> drwxrwxrwx+   4 Owner    Users           0 Feb 12 21:18 /home
>
> Owner@Beast /
> $ ls -l /home
> total 0
> drwx------+   3 Owner    Users           0 Feb 14 10:48 Owner
> drwx------+   2 jjg      Users           0 Feb 12 20:21 jjg
>
> Owner@Beast /
> $ ls -ld /etc/passwd /etc/group /bin /bin/bash /bin/bash.exe
> drwxr-xr-x+   2 Owner    Users           0 Feb 12 21:23 /bin
> -rwxr-xr-x+   1 Owner    Users      527360 Oct 20 08:12 /bin/bash
> -rwxr-xr-x+   1 Owner    Users      527360 Oct 20 08:12 /bin/bash.exe
> -rw-r--r--    1 Owner    Users         248 Feb 12 20:59 /etc/group
> -rw-r--r--    1 Owner    Users        1369 Feb 14 11:38 /etc/passwd
>
>
> I have been a Solaris administrator for 10 years, but have never used Cygwin.
> Cygwin seems like a foreign language to me.

Cygwin only uses the underlying Windows API, and thus comes with most of
its limitations (unless they are explicitly fixed, which is not the case
here).

> Please help.  Why are the most basic forms of login not working with a
> "standard" installation of Cygwin?

Because normal users (read: anyone but SYSTEM) don't have enough
privileges to switch users.  Starting with Win2003, not even SYSTEM has
the needed privileges by default.  For more information, see
/usr/share/doc/Cygwin/openssh.README.

> Better question:  How can I get login or su to work?

Run them as SYSTEM.  IIRC, su is broken under Cygwin altogether.  login
does work, however, as long as the user has appropriate privileges.

> Even better question:  How can I switch users?

Install the openssh package, set up sshd (using ssh-host-config), and use
"ssh user@localhost" in lieu of "su - user".

HTH,
	Igor
-- 
				http://cs.nyu.edu/~pechtcha/
      |\      _,,,---,,_		pechtcha@cs.nyu.edu
ZZZzz /,`.-'`'    -.  ;-;;,_		igor@watson.ibm.com
     |,4-  ) )-,_. ,\ (  `'-'		Igor Pechtchanski, Ph.D.
    '---''(_/--'  `-'\_) fL	a.k.a JaguaR-R-R-r-r-r-.-.-.  Meow!

"I have since come to realize that being between your mentor and his route
to the bathroom is a major career booster."  -- Patrick Naughton

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]