Re: Problems with pair key auth and sftp server

Re: Problems with pair key auth and sftp server

["Benjamin Stössel"]

And exactly how did you do this?  What were your answers to the questions?
Is 'sshd' actually running now?

about the answers I used "ssh-host-config -y" so every answer was yes. And the sshd is running. Except that it throws the error about the sftp-server.

Hm, why is this?

I switched the user to set up the key pair for my own user and not the local admin. As I do not want that the local admin can connect except for console.

RSAAuth is activated by default.  Why are you changing things here before
you know the defaults work?

RSAAuth was in the config as comment with a # in front.

Why not use 'ssh-user-config' to create your user SSH config files with
proper locations, permissions, etc.?

I did use the ssh-user-config up front, forgot to mention. And it did not work afterwards.

If you need anything like config or so let me know.
-- 
Psssst! Schon vom neuen GMX MultiMessenger gehört? Der kann`s mit allen: http://www.gmx.net/de/go/multimessenger

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: Problems with pair key auth and sftp server

[Larry Hall (Cygwin)]

Benjamin,

Please try to keep the quoting format.  It makes it easier to follow the
discussion and pick out your replies to my questions.  Also, it is
preferable to reply to the messages as this maintains the message
threading.

Benjamin Stössel wrote:
>> And exactly how did you do this? What were your answers to the questions?
>> Is 'sshd' actually running now?
> 
> about the answers I used "ssh-host-config -y" so every answer was yes.
> And the sshd is running. Except that it throws the error about the
> sftp-server.

Unless you had the foresight to answer 'sshd-server' when asked for a
user name for the service, this won't work for you.  I recommend you
rerun 'ssh-host-config' without the '-y' and just answer the questions.
You can just take the defaults.

>> Hm, why is this?
> 
> I switched the user to set up the key pair for my own user and not the
> local admin. As I do not want that the local admin can connect except for
> console.

I'd recommend working with a local user first.

>> RSAAuth is activated by default. Why are you changing things here before 
>> you know the defaults work?
> 
> RSAAuth was in the config as comment with a # in front.

That means the setting that's in the comment is the default.

>> Why not use 'ssh-user-config' to create your user SSH config files with 
>> proper locations, permissions, etc.?
> 
> I did use the ssh-user-config up front, forgot to mention. And it did not
> work afterwards.

That's where we want to start looking at the problem then.  You should
reinstate things as you had them, though using a local user, and we can
proceed from there, assuming changing the user running the service to
'sshd-server' doesn't resolve your problems.

> If you need anything like config or so let me know.

I've already asked for this information:

>> We're really going to need to know what you're doing exactly and what
>> your configuration is:
>> 
>> <http://cygwin.com/problems.html>

And in case this also was glossed over:

>> I'd really recommend using the existing utilities for configuring 'sshd'
>> and 'ssh' and testing out your new configuration with 'ssh'.  This may
>> not be as you want it or the exact interface you're looking for but it
>> will help narrow down the myriad of possibilities.  I'd also recommend
>> looking at the email archives for others who may have had similar issues
>> to what you're experiencing.  There's allot of OpenSSH discussion and
>> help there.

-- 
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: Problems with pair key auth and sftp server

[Larry Hall (Cygwin)]

Benjamin Stössel wrote:
> Hi there,
> 
> I hope I write to the right place.

Yes, it is.

> I got a problem with my cygwin setup.
> 
> I got a setup running at the moment but as I want to upgrade to the
> latest  version soon, I installed it on my test machine. Which is running a
> plain Windows Server 2008 Setup.
> 
> I did the normal setup procedure, just added a few packages like all
> basic  ones, some editors, openssh, openssl and syslog-ng.
> 
> After that I run the ssh-host-config and created the group and passwd
> files. All this has been done in local admin.

And exactly how did you do this?  What were your answers to the questions?
Is 'sshd' actually running now?

> Now I switched to my user, which is domain admin and changed the group
> and  passwd files with mkgroup -d and so on.

Hm, why is this?

> Changed to sshd_config file to activate RSAAuth, Logs, Authfiles, etc.

RSAAuth is activated by default.  Why are you changing things here before
you know the defaults work?

> Then I created the key files with ssh-keygen. After that I copied the
> id_rsa file to my local machine and created with the puttygen and .pkk file
> for putty and winscp.

Why not use 'ssh-user-config' to create your user SSH config files with
proper locations, permissions, etc.?

> And now comes the strange part where I dont get further. I tried
> everything, read everything I found for about a day with no result.
> 
> When I try to login it says, Refused our key and in the log files it says
> that the sftp-server file could not be found. Which is strange as I have not
> changed the folder where it is and did also not change the entry line in the
> config.
> 
> I hope someone can help as my boss is not happy that he has to pay all
> these hours without progress :D

We're really going to need to know what you're doing exactly and what
your configuration is:

<http://cygwin.com/problems.html>

I'd really recommend using the existing utilities for configuring 'sshd'
and 'ssh' and testing out your new configuration with 'ssh'.  This may
not be as you want it or the exact interface you're looking for but it
will help narrow down the myriad of possibilities.  I'd also recommend
looking at the email archives for others who may have had similar issues
to what you're experiencing.  There's allot of OpenSSH discussion and
help there.

-- 
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Problems with pair key auth and sftp server

["Benjamin Stössel"]

Hi there,

I hope I write to the right place.

I got a problem with my cygwin setup.

I got a setup running at the moment but as I want to upgrade to the latest version soon, I installed it on my test machine. Which is running a plain Windows Server 2008 Setup.

I did the normal setup procedure, just added a few packages like all basic ones, some editors, openssh, openssl and syslog-ng.

After that I run the ssh-host-config and created the group and passwd files.
All this has been done in local admin.

Now I switched to my user, which is domain admin and changed the group and passwd files with mkgroup -d and so on.
Changed to sshd_config file to activate RSAAuth, Logs, Authfiles, etc.

Then I created the key files with ssh-keygen. After that I copied the id_rsa file to my local machine and created with the puttygen and .pkk file for putty and winscp.

And now comes the strange part where I dont get further. I tried everything, read everything I found for about a day with no result.

When I try to login it says, Refused our key and in the log files it says that the sftp-server file could not be found. Which is strange as I have not changed the folder where it is and did also not change the entry line in the config.

I hope someone can help as my boss is not happy that he has to pay all these hours without progress :D

Thanks in advance

Cheers
Ben


-- 
NUR NOCH BIS 31.01.! GMX FreeDSL - Telefonanschluss + DSL 
für nur 16,37 EURO/mtl.!* http://dsl.gmx.de/?ac=OM.AD.PD003K11308T4569a

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/