Failed password for invalid user

public inbox for cygwin@cygwin.com
 help / color / mirror / Atom feed

* Failed password for invalid user
@ 2017-03-03  9:03 jesus san miguel
  2017-03-03 13:50 ` Andrey Repin
  2017-03-07 16:53 ` Corinna Vinschen
  0 siblings, 2 replies; 7+ messages in thread
From: jesus san miguel @ 2017-03-03  9:03 UTC (permalink / raw)
  To: cygwin

I am running cygwin 2.7.0 sshd service under a local cyg_server account.

I wanted to avoid case sensitive problems by duplicating users in
/etc/passwd, but I find mixed results:
I can login as "Administrator", "MYPC+Administrator" and "miabuela",
but not as "administrator" despite all of them being the same Window
user.

This is an excerpt of /etc/passwd:

$ cat /etc/passwd | grep 500
SSFE009W2012+Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
miabuela:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash

#Administrator@SSFE009W2012 /etc
$ uname -a
CYGWIN_NT-6.3-WOW SSFE009W2012 2.7.0(0.306/5/3) 2017-02-12 13:13 i686 Cygwin

The error I get in windows log is "Failed password for invalid user
administrator"


Thanks in advance,
Jesus

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: Failed password for invalid user
  2017-03-03  9:03 Failed password for invalid user jesus san miguel
@ 2017-03-03 13:50 ` Andrey Repin
  2017-03-06  8:48   ` jesus san miguel
  2017-03-07 16:53 ` Corinna Vinschen
  1 sibling, 1 reply; 7+ messages in thread
From: Andrey Repin @ 2017-03-03 13:50 UTC (permalink / raw)
  To: jesus san miguel, cygwin

Greetings, jesus san miguel!

> I wanted to avoid case sensitive problems by duplicating users in
> /etc/passwd,

Just delete that file already.

> but I find mixed results:
> I can login as "Administrator", "MYPC+Administrator" and "miabuela",
> but not as "administrator" despite all of them being the same Window
> user.

> This is an excerpt of /etc/passwd:

> $ cat /etc/passwd | grep 500
> SSFE009W2012+Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> miabuela:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash

> #Administrator@SSFE009W2012 /etc
> $ uname -a
> CYGWIN_NT-6.3-WOW SSFE009W2012 2.7.0(0.306/5/3) 2017-02-12 13:13 i686 Cygwin

> The error I get in windows log is "Failed password for invalid user
> administrator"

Cygwin plugs directly into Windows SAM for years already.
You're just making it hard for yourself.


-- 
With best regards,
Andrey Repin
Friday, March 3, 2017 16:47:15

Sorry for my terrible english...


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: Failed password for invalid user
  2017-03-03 13:50 ` Andrey Repin
@ 2017-03-06  8:48   ` jesus san miguel
  2017-03-06  9:35     ` Andrey Repin
  2017-03-07 16:57     ` Corinna Vinschen
  0 siblings, 2 replies; 7+ messages in thread
From: jesus san miguel @ 2017-03-06  8:48 UTC (permalink / raw)
  To: cygwin

Hi Andrey,

Thanks for your answer, but I am using password-less authentication
too (with public/private keys), so /etc/password is necessary, isn't
it?
Besides, user alias "miabuela" is working as expected. Why shouldn't
"administrator" alias work as well?

Best,
Jesus

On Fri, Mar 3, 2017 at 2:48 PM, Andrey Repin <anrdaemon@yandex.ru> wrote:
> Greetings, jesus san miguel!
>
>> I wanted to avoid case sensitive problems by duplicating users in
>> /etc/passwd,
>
> Just delete that file already.
>
>> but I find mixed results:
>> I can login as "Administrator", "MYPC+Administrator" and "miabuela",
>> but not as "administrator" despite all of them being the same Window
>> user.
>
>> This is an excerpt of /etc/passwd:
>
>> $ cat /etc/passwd | grep 500
>> SSFE009W2012+Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>> miabuela:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>> Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>> administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>
>> #Administrator@SSFE009W2012 /etc
>> $ uname -a
>> CYGWIN_NT-6.3-WOW SSFE009W2012 2.7.0(0.306/5/3) 2017-02-12 13:13 i686 Cygwin
>
>> The error I get in windows log is "Failed password for invalid user
>> administrator"
>
> Cygwin plugs directly into Windows SAM for years already.
> You're just making it hard for yourself.
>
>
> --
> With best regards,
> Andrey Repin
> Friday, March 3, 2017 16:47:15
>
> Sorry for my terrible english...
>

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: Failed password for invalid user
  2017-03-06  8:48   ` jesus san miguel
@ 2017-03-06  9:35     ` Andrey Repin
  2017-03-07 16:47       ` cyg Simple
  2017-03-07 16:57     ` Corinna Vinschen
  1 sibling, 1 reply; 7+ messages in thread
From: Andrey Repin @ 2017-03-06  9:35 UTC (permalink / raw)
  To: jesus san miguel, cygwin

Greetings, jesus san miguel!

Please don't top-post in this list. Thank you.

> On Fri, Mar 3, 2017 at 2:48 PM, Andrey Repin <anrdaemon@xxxx> wrote:

And please don't quote raw email addresses.

>> Greetings, jesus san miguel!
>>
>>> I wanted to avoid case sensitive problems by duplicating users in
>>> /etc/passwd,
>>
>> Just delete that file already.
>>
>>> but I find mixed results:
>>> I can login as "Administrator", "MYPC+Administrator" and "miabuela",
>>> but not as "administrator" despite all of them being the same Window
>>> user.
>>
>>> This is an excerpt of /etc/passwd:
>>
>>> $ cat /etc/passwd | grep 500
>>> SSFE009W2012+Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>>> miabuela:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>>> Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>>> administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
>>
>>> #Administrator@SSFE009W2012 /etc
>>> $ uname -a
>>> CYGWIN_NT-6.3-WOW SSFE009W2012 2.7.0(0.306/5/3) 2017-02-12 13:13 i686 Cygwin
>>
>>> The error I get in windows log is "Failed password for invalid user
>>> administrator"
>>
>> Cygwin plugs directly into Windows SAM for years already.
>> You're just making it hard for yourself.

> Thanks for your answer, but I am using password-less authentication
> too (with public/private keys), so /etc/password is necessary, isn't
> it?

For all that I know, all you need is to save your password for the account you
want to login with.

> Besides, user alias "miabuela" is working as expected. Why shouldn't
> "administrator" alias work as well?

That's the worst idea I've heard since morning.


-- 
With best regards,
Andrey Repin
Monday, March 6, 2017 12:20:25

Sorry for my terrible english...


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: Failed password for invalid user
  2017-03-06  9:35     ` Andrey Repin
@ 2017-03-07 16:47       ` cyg Simple
  0 siblings, 0 replies; 7+ messages in thread
From: cyg Simple @ 2017-03-07 16:47 UTC (permalink / raw)
  To: cygwin

On 3/6/2017 4:22 AM, Andrey Repin wrote:
> Greetings, jesus san miguel!
> 
>> Besides, user alias "miabuela" is working as expected. Why shouldn't
>> "administrator" alias work as well?
> 
> That's the worst idea I've heard since morning.
> 

It's a legacy idea to allow different users control a password to the
same uid.  Not a bad idea but certainly not a secure one as needed for
today. It's still a valid idea depending on what the uid is used for.

-- 
cyg Simple

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: Failed password for invalid user
  2017-03-03  9:03 Failed password for invalid user jesus san miguel
  2017-03-03 13:50 ` Andrey Repin
@ 2017-03-07 16:53 ` Corinna Vinschen
  1 sibling, 0 replies; 7+ messages in thread
From: Corinna Vinschen @ 2017-03-07 16:53 UTC (permalink / raw)
  To: cygwin

[-- Attachment #1: Type: text/plain, Size: 1665 bytes --]

On Mar  3 10:03, jesus san miguel wrote:
> I am running cygwin 2.7.0 sshd service under a local cyg_server account.
> 
> I wanted to avoid case sensitive problems by duplicating users in
> /etc/passwd, but I find mixed results:
> I can login as "Administrator", "MYPC+Administrator" and "miabuela",
> but not as "administrator" despite all of them being the same Window
> user.
> 
> This is an excerpt of /etc/passwd:
> 
> $ cat /etc/passwd | grep 500
> SSFE009W2012+Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> miabuela:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> 
> #Administrator@SSFE009W2012 /etc
> $ uname -a
> CYGWIN_NT-6.3-WOW SSFE009W2012 2.7.0(0.306/5/3) 2017-02-12 13:13 i686 Cygwin
> 
> The error I get in windows log is "Failed password for invalid user
> administrator"
> 
> 
> Thanks in advance,
> Jesus

OpenSSH checks the username case-sensitive!

So, depending on the order in /etc/passwd you can login either with
"Administrator" or with "administrator", whatever comes first and
matches the user account.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 819 bytes --]

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: Failed password for invalid user
  2017-03-06  8:48   ` jesus san miguel
  2017-03-06  9:35     ` Andrey Repin
@ 2017-03-07 16:57     ` Corinna Vinschen
  1 sibling, 0 replies; 7+ messages in thread
From: Corinna Vinschen @ 2017-03-07 16:57 UTC (permalink / raw)
  To: cygwin

[-- Attachment #1: Type: text/plain, Size: 947 bytes --]

On Mar  6 09:48, jesus san miguel wrote:
> Hi Andrey,
> 
> Thanks for your answer, but I am using password-less authentication
> too (with public/private keys), so /etc/password is necessary, isn't
> it?

No!  Who told you that?  As long as you use the user account name
the way it's called in Cygwin (`getent passwd ...' is helpful), and
as long as you use it case-sensitive when logging in via ssh, you
doe't need /etc/passwd.  You only need this file to cover special 
cases like using different names for the same user account.

Please have a look into http://cygwin.com/cygwin-ug-net/ntsec.html.

It's pretty much all explained there.  Well, except for the fact that
OpenSSH handles the username case-sensitive, but that's an OpenSSH
issue, not a Cygwin issue.

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 819 bytes --]

^ permalink raw reply	[flat|nested] 7+ messages in thread

end of thread, other threads:[~2017-03-07 16:57 UTC | newest]

Thread overview: 7+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-03-03  9:03 Failed password for invalid user jesus san miguel
2017-03-03 13:50 ` Andrey Repin
2017-03-06  8:48   ` jesus san miguel
2017-03-06  9:35     ` Andrey Repin
2017-03-07 16:47       ` cyg Simple
2017-03-07 16:57     ` Corinna Vinschen
2017-03-07 16:53 ` Corinna Vinschen

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).