Re: sshd fails to start: logon failure

["Larry Hall (Cygwin)" <reply-to-list-only-lh@cygwin.com>]

On 2/14/2013 5:07 PM, Ryan Johnson wrote:
> On 14/02/2013 4:19 PM, Larry Hall (Cygwin) wrote:
>> On 2/14/2013 4:02 PM, Ryan Johnson wrote:
>>> On 14/02/2013 3:52 PM, marco atzeri wrote:
>>>> On 2/14/2013 9:43 PM, Ryan Johnson wrote:
>>>>> Hi all,
>>>>>
>>>>> I tried to ssh to my cygwin box today and was unable to connect. It
>>>>> seems the sshd service can no longer run, for reasons that mystify me:
>>>>>> # net start sshd
>>>>>> System error 1069 has occurred.
>>>>>>
>>>>>> The service did not start due to a logon failure.
>>>>>
>>>>> I wasn't aware of having changed anything; would it be advisable to just
>>>>> reinstall sshd from setup.exe and/or sshd_host_config, or is there some
>>>>> simple troubleshooting I might do?
>>>>
>>>> reinstall is not the way.
>>>> Likely something reset the cyg_server privileges.
>>>> Try to re-enable them with
>>>>
>>>> editrights -u cyg_server -a SeAssignPrimaryTokenPrivilege
>>>> editrights -u cyg_server -a SeCreateTokenPrivilege
>>>> editrights -u cyg_server -a SeTcbPrivilege
>>>> editrights -u cyg_server -a SeServiceLogonRight
>>>> editrights -u cyg_server -a SeIncreaseQuotaPrivilege
>>> No luck, the same error still occurs. However, now that you mention it, I
>>> did play with cygserver settings while trying to install pgsql a while back.
>>>
>>> Is there a way to view the privileges to see what I may have broken?
>>
>> $ editrights -u cyg_server -l
>> SeAssignPrimaryTokenPrivilege
>> SeCreateTokenPrivilege
>> SeTcbPrivilege
>> SeServiceLogonRight
>> SeDenyRemoteInteractiveLogonRight
> Mine has all those, plus SeIncreaseQuotaPrivilege (possibly thanks to the
> above from Marco).
>
> It seems that I managed to de-configure sshd somehow. There's no sshd_config
> in /etc/ (just the skeleton in /etc/defaults/), and sshd-host-config doesn't
> seem to exist, either. So, I blew away the sshd and cygrunsrv services and
> their associated users and re-ran ssh-host-config. All is well now... except
> that now an enormous ascii art hippo greets me at login. Ick.

Just be glad the hippo isn't flying! ;-)

Or you could change/remove /etc/motd.

-- 
Larry

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple