From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 111983 invoked by alias); 23 Apr 2019 08:45:33 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 109541 invoked by uid 89); 23 Apr 2019 08:45:31 -0000 Authentication-Results: sourceware.org; auth=none X-Spam-SWARE-Status: No, score=-101.2 required=5.0 tests=AWL,BAYES_05,GOOD_FROM_CORINNA_CYGWIN,RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1 spammy=H*F:U*corinna-cygwin, SYSTEM, cygwinannounce, cygwin-announce X-HELO: mout.kundenserver.de Received: from mout.kundenserver.de (HELO mout.kundenserver.de) (212.227.126.131) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Tue, 23 Apr 2019 08:45:29 +0000 Received: from calimero.vinschen.de ([24.134.7.25]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPSA (Nemesis) id 1MXoQG-1hJuri3u2u-00Y7n8 for ; Tue, 23 Apr 2019 10:45:26 +0200 Received: by calimero.vinschen.de (Postfix, from userid 500) id 28481A804A5; Tue, 23 Apr 2019 10:45:26 +0200 (CEST) Date: Tue, 23 Apr 2019 08:45:00 -0000 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: HEADSUP: SSHD service rename Message-ID: <20190423084526.GA30041@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <20190128090013.GL3912@calimero.vinschen.de> <1555968539753-0.post@n5.nabble.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="0F1p//8PRICkK4MW" Content-Disposition: inline In-Reply-To: <1555968539753-0.post@n5.nabble.com> User-Agent: Mutt/1.11.3 (2019-02-01) X-SW-Source: 2019-04/txt/msg00159.txt.bz2 --0F1p//8PRICkK4MW Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Content-length: 759 On Apr 22 14:28, JZeman wrote: > When I try to install Cygwin sshd, it creates the cygsshd service in wind= ows > however, it isn't creating the cyg_server account or any other account. It > wants to use the System account.=20 https://cygwin.com/cygwin-ug-net/ntsec.html#ntsec-nopasswd1 Also see the OpenSSH release message section "Portability" at https://cygwin.com/ml/cygwin-announce/2019-04/msg00017.html So, yes. Using the SYSTEM account instead of cyg_server is correct. We now use S4U authentication rather than trying to create our own user token. We only invented cyg_server to workaround the issue that SYSTEM services are not allowed to create user tokens starting with Windows Server 2003. Corinna --=20 Corinna Vinschen Cygwin Maintainer --0F1p//8PRICkK4MW Content-Type: application/pgp-signature; name="signature.asc" Content-length: 833 -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEoVYPmneWZnwT6kwF9TYGna5ET6AFAly+0KYACgkQ9TYGna5E T6ACBRAAlgsZuQz6FnxyY1KwQSuIj9BRpg0jIAgXfUzaqJqsjZl/Ck7O/MJIzChc z17FC+/Ynl6W8V4FiAfHAGvoXKGFQlgMv73HsQmIW11Pp+CXE8fdfVtD1OVvn93v ykvpRbIlia3b9szoWtLuS+JaSItWudFuzePaqDbIhTc9+Z6zGmK0XvWlq3e6FwrC zF70eZt25q6Y/nhb0rwSmtkjc6xZCe2UJpGHI+eFuyWTTLZ8a395eWReOprQHj6I 59YEcO1SpqEsGr+5mz97HlX5zFKgxD3LwnXgUJyYWD+oND94Z5h/H+jC10x6CCYC cW7ak4esPj6K1vVrArKpPPzdaf9StoIQJYDWKvN+om5XAgp1Jv8vx1TL8LHQ3oVV EmPtvIv6EEoCm7D2oCbicDP5W6B+ITP9tqeZJI/OrhWK/IzYOrRxPBM5nGhZvOOK k8mmT7zeLmzn1G+P/0LVSnb+451tDKY3ipNEyDXAF2l6lc4WAOffmukaaP4o+hU7 4kgIDkM4fA02lfxAV82wup0xkytOWi7zJ7K6c13XcVsNV9PrLNJl5lJ1n0UnRpev W9l9DkN0oVgqukRWz0Ynh2GSwzD9i2ZsFxcr10akvpuqKS+zyoksc7RFHgm1QzHD uM6d6QC/sO4OaH7V7IxGwJ+mMnz2POk1LQlgWnyZiKWVf1HVv3k= =MyVq -----END PGP SIGNATURE----- --0F1p//8PRICkK4MW--