This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

RE: Definitely no sshd on FAT32?


Top posting, sorry.

Is there a way around the permission check on the private key files for the
ssh client?

The key files are on a mapped drive for the domain controller. The domain
controller was switched to samba who reports:

bash-3.2$ ls -al
total 7168
drwxr-xr-x  2 jpyeron mkpasswd    0 Mar  3 22:13 .
drwxr-xr-x 10 jpyeron mkpasswd    0 Mar  3 21:49 ..
-rw-r--r--  1 jpyeron mkpasswd  668 Mar  3 22:13 id_dsa
-rw-r--r--  1 jpyeron mkpasswd  604 Mar  3 22:14 id_dsa.pub
-rw-r--r--  1 jpyeron mkpasswd 1671 Mar  3 22:13 id_rsa
-rw-r--r--  1 jpyeron mkpasswd  396 Mar  3 22:14 id_rsa.pub
-rw-r--r--  1 jpyeron mkpasswd 3614 Feb 21 11:47 known_hosts


bash-3.2$ cacls id_dsa
z:\.ssh\id_dsa PDINC\jpyeron:F
               PDINC\Domain Users:(special access:)

               Everyone:(special access:)


But in reality the files are 600 on the ext3 partition.


-jason

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
-                                                               -
- Jason Pyeron                      PD Inc. http://www.pdinc.us -
- Principal Consultant              10 West 24th Street #100    -
- +1 (443) 269-1555 x333            Baltimore, Maryland 21218   -
-                                                               -
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

This message is for the designated recipient only and may contain
privileged, proprietary, or otherwise private information. I.f y.o.u.
.h.a.v.e. .r.e.c.e.i.v.e.d. .i.t. .i.n. .e.r.r.o.r., purge the message from
your system and
notify the sender immediately.  Any other use of the email by you
is prohibited. 

 

> -----Original Message-----
> From: cygwin-owner at cygwin dot com [mailto:cygwin-owner at 
> cygwin dot com] On Behalf Of Corinna Vinschen
> Sent: Tuesday, March 23, 2004 17:51
> To: cygwin at cygwin dot com
> Subject: Re: Definitely no sshd on FAT32?
> 
> On Mar 23 15:36, Ian Brandt wrote:
> > Looks like it's already set to no in the installed config.  
> From man 
> > sshd_config it looks like StrictModes applies to checks of the home 
> > directory and files for the user logging in.  I had tried 
> installing the 
> > service with '-t' option to sshd, but apparently it still 
> does the perm 
> > checks on the host keys even in test mode.
> 
> The following checks are performed on the key file in the 
> following order:
> 
> - Not Windows NT? Yes -> Don't check permissions.
> - "ntea" switched on? Yes -> Check permissions.  (Not 
> applicable on FAT32)
> - statfs(key_file) fails? Yes -> Check permissions.
> - Does the file system support ACLs?             (Shoud be only NTFS)
>   Yes -> "ntsec" switched on ?
>          Yes -> Check permissions
> - Don't check permissions
> 
> Try to figure out what happens on your system.  However, if you're
> running 2K or XP, I don't see a reason to keep FAT32.  You can convert
> it to NTFS using the "convert" tool which is shipped with all 
> NT versions.
> 
> 
> Corinna
> 
> -- 
> Corinna Vinschen                  Please, send mails 
> regarding Cygwin to
> Cygwin Developer                                
> mailto:cygwin@cygwin.com
> Red Hat, Inc.
> 
> --
> Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
> Problem reports:       http://cygwin.com/problems.html
> Documentation:         http://cygwin.com/docs.html
> FAQ:                   http://cygwin.com/faq/
> 
> 


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]