From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 2478 invoked by alias); 30 Oct 2002 11:56:26 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 2404 invoked from network); 30 Oct 2002 11:56:23 -0000 Received: from unknown (HELO ns0.uk.circle.com) (212.161.1.7) by sources.redhat.com with SMTP; 30 Oct 2002 11:56:23 -0000 Received: from mime-london.uk.circle.com (mime-london.uk.circle.com [10.20.0.101]) by ns0.uk.circle.com (8.9.3/8.9.3) with ESMTP id LAA89759 for ; Wed, 30 Oct 2002 11:58:44 GMT (envelope-from Vince.Hoffman@uk.circle.com) Received: from ex-london.uk.circle.com (unverified) by mime-london.uk.circle.com (Content Technologies SMTPRS 4.2.10) with ESMTP id for ; Wed, 30 Oct 2002 11:56:07 +0000 Received: by EX-LONDON with Internet Mail Service (5.5.2653.19) id <4B7LRQ32>; Wed, 30 Oct 2002 11:56:18 -0000 Message-ID: <3500515B75D9D311948800508BA379559508F7@EX-LONDON> From: Vince Hoffman To: cygwin@cygwin.com Subject: RE: problems setting permissions for sshd Date: Wed, 30 Oct 2002 06:18:00 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-SW-Source: 2002-10/txt/msg01835.txt.bz2 just making up a group entry is unlikely to work. to get your domain groups use mkgroup -d (making sure you are connected to your network.) > -----Original Message----- > From: Marcos Lorenzo [mailto:marcos@it.uc3m.es] > Sent: 30 October 2002 11:45 > To: Harig, Mark A. > Cc: Pierre A. Humblet; cygwin@cygwin.com > Subject: RE: problems setting permissions for sshd >=20 >=20 > On Tue, 29 Oct 2002, Marcos Lorenzo wrote: >=20 > > Harig, Mark A. wrote [11:21am -0500] > >=20 > > HMA > Yes, which implies that Marcos Lorenzo should=20 > regenerate > > HMA > his /etc/group file from scratch with 'mkgroup', and > > HMA > then edit it to add 'Administrators'. > >=20 > > mkgroup for /etc/group and mkpasswd for /etc/passwd then? > >=20 > > Ok, I'll try it and then I told you. > >=20 > > Thanks everyone > > m4c. > >=20 >=20 > OK. That worked: >=20 > marcos@MOZART /etc$ for i in * ; do [ -f "$i" ] && chmod 640=20 > "$i" ; [ -d > "$i" ] && chmod 750 "$i" ; done > marcos@MOZART /etc$ d > total 600k > drwx------ 13 admin domusers 12k Oct 30 12:09 . > drwx------ 13 admin domusers 4.0k Oct 29 12:52 .. > -rw-r----- 1 admin domadmin 85k Jul 10 04:28 Muttrc > drwxr-x--- 2 admin domadmin 4.0k Sep 18 11:54 WindowMaker > drwxr-x--- 13 admin domadmin 4.0k Sep 18 11:55 X11 > drwxr-x--- 2 admin domadmin 4.0k Sep 18 11:43 apache > drwxr-x--- 2 admin domadmin 0 Sep 18 14:10 cron.d > -rw-r----- 1 admin domadmin 1.3k Feb 19 2002 csh.cshrc > -rw-r----- 1 admin domadmin 401 Dec 21 2001 csh.login > -rw-r----- 1 admin domadmin 4.7k Sep 19 19:00 enscript.cfg > -rw-r----- 1 admin domadmin 4.7k Aug 25 23:31=20 > enscript.cfg.default >=20 > Now my passwd and group files are: >=20 > marcos@MOZART ~$ cat /etc/passwd > all:*:0:0:,S-1-1-0:: > system:*:18:18:,S-1-5-18:: > admin:*:544:544:,S-1-5-32-544:: > domadmin:unused_by_nt/2000/xp:500:512:U-DIT\Administrador,S-1- > 5-21-462973936-1154566708-996637233-500:/home/Administrador:/bin/bash > guest:unused_by_nt/2000/xp:501:514:U-DIT\Invitado,S-1-5-21-462 > 973936-1154566708-996637233-501:/home/Invitado:/bin/bash > ivan:unused_by_nt/2000/xp:1004:512:Iv=E1n Alonso=20 > Guti=E9rrez,U-DIT\ivan,S-1-5-21-462973936-1154566708-996637233-1 004:/home/ivan:/bin/bash > lab:unused_by_nt/2000/xp:1005:513:Usuario est=E1ndar para las=20 > pr=E1cticas,U-DIT\lab,S-1-5-21-462973936-1154566708-996637233-10 05:/home/lab:/bin/bash > marcos:unused_by_nt/2000/xp:1003:512:Marcos Lorenzo de=20 > Santiago,U-DIT\marcos,S-1-5-21-462973936-1154566708-996637233- > 1003:/home/marcos:/bin/bash > sshd:unused_by_nt/2000/xp:1079:513:sshd=20 > privsep,U-DIT\sshd,S-1-5-21-462973936-1154566708-996637233-107 9:/var/empty:/bin/bash >=20 > marcos@MOZART ~$ cat /etc/group > everyone:S-1-1-0:0: > system:S-1-5-18:18: > domusers:S-1-5-21-462973936-1154566708-996637233-513:513: > admin:S-1-5-32-544:544: > domadmin:S-1-5-32-512:512: > duplicat:S-1-5-32-552:552: > guests:S-1-5-32-546:546: > copy operators:S-1-5-32-551:551: > account operators:S-1-5-32-548:548: > print operators:S-1-5-32-550:550: > servers operators:S-1-5-32-549:549: > users:S-1-5-32-545:545: >=20 > I added group domadmin as mkgroup didn't show this group (Domain > Administrators). >=20 > But now I when I ssh my machine (sshd runs perfectly) I get the > following error: >=20 > marcos@MOZART ~$ ssh mozart > marcos@mozart's password: > Permission denied, please try again. >=20 > and my event log viewer says: >=20 > sshd : Win32 Process Id =3D 0xF1 : Cygwin Process Id =3D 0xF1 : Failed > password for illegal user marcos from 163.117.144.225 port 2049 ssh2. >=20 > Another thing: >=20 > marcos@MOZART /tmp$ d > total 8.0k > drwxrwxrwx 3 admin domadmin 4.0k Oct 30 12:33 . > drwx------ 14 admin domadmin 4.0k Oct 30 12:24 .. > drwxr-x--- 0 system domadmin 0 Oct 30 12:33 pepe > marcos@MOZART /tmp$ cd pepe/ > bash: cd: pepe/: Permission denied > marcos@MOZART /tmp$ id > uid=3D1003(marcos) gid=3D512(domadmin)=20 > groups=3D0(everyone),513(domusers),544(admin),545(users) > marcos@MOZART /tmp$ groups > domadmin everyone domusers admin users >=20 > And if I do: >=20 > marcos@MOZART /tmp$ chmod o+rx pepe/ > marcos@MOZART /tmp$ d > total 8.0k > drwxrwxrwx 3 admin domadmin 4.0k Oct 30 12:33 . > drwx------ 14 admin domadmin 4.0k Oct 30 12:24 .. > drwxr-xr-x 2 system domadmin 0 Oct 30 12:33 pepe > marcos@MOZART /tmp$ cd pepe/ > marcos@MOZART /tmp/pepe$ ls > marcos@MOZART /tmp/pepe$ d > total 4.0k > drwxr-xr-x 2 system domadmin 0 Oct 30 12:33 . > drwxrwxrwx 3 admin domadmin 4.0k Oct 30 12:33 .. > marcos@MOZART /tmp/pepe$ >=20 > Why I can't cd to this folder if I belong to the group=20 > domadmin and I have > read and execution permissions? >=20 >=20 > Maybe the two errors above have any relation... but I can't see what's > going on. >=20 >=20 >=20 > thx, > m4c. >=20 >=20 > -- > Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple > Bug reporting: http://cygwin.com/bugs.html > Documentation: http://cygwin.com/docs.html > FAQ: http://cygwin.com/faq/ >=20 -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/