From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 112321 invoked by alias); 7 Jan 2017 19:06:37 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 112312 invoked by uid 89); 7 Jan 2017 19:06:36 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: Yes, score=6.2 required=5.0 tests=AWL,BAYES_50,RCVD_IN_DNSWL_NONE,SPAM_BODY,SPF_PASS autolearn=no version=3.3.2 spammy=inbound, nuts, routed, wifi X-HELO: smtp-out-5.talktalk.net Received: from smtp-out-5.talktalk.net (HELO smtp-out-5.talktalk.net) (62.24.135.69) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Sat, 07 Jan 2017 19:06:34 +0000 Received: from [192.168.1.100] ([92.20.147.99]) by smtp.talktalk.net with SMTP id PwK0coaX8HGLwPwK0cQEDw; Sat, 07 Jan 2017 19:06:32 +0000 X-Spam: 0 X-OAuthority: v=2.2 cv=dsCZMBo4 c=1 sm=1 tr=0 a=dHvrRG0tPyWZVY3ihLdgmA==:117 a=dHvrRG0tPyWZVY3ihLdgmA==:17 a=IkcTkHD0fZMA:10 a=HKZ1E4KacRkQEvTr7osA:9 a=QEXdDO2ut3YA:10 From: mike Subject: sshd and PuTTY and Windows firewall To: "cygwin@cygwin.com" Message-ID: Date: Sat, 07 Jan 2017 19:06:00 -0000 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.6.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-CMAE-Envelope: MS4wfJ8rgs8K6CAhNECePQ0833LcLYYgXEKT8b4G3RRVyVq7Oslby5mFUh3S3R9KrJ+vYjjAQBF99ymDkR8YQuLZfJmpwORurw2jBRUWy9L8tXcuY2ZV5WAM woQ+Bvt9kstxkGPFjumf3NPLHrO1c7MVanWi7PYhe4DGSorW68TYCx8w X-IsSubscribed: yes X-SW-Source: 2017-01/txt/msg00041.txt.bz2 Hi First I'm using the Windows firewall in Windows 7 on a laptop and it is switched on. I'm not sure whether this is a Cygwin question or not but I don't know where else to ask and it's driving me nuts. If I use the PuTTY app to connect to 192.168.1.100 it connects (where 192.168.1.100 is the local address behind and through my router). (Using Cygwin ssh 192.168.1.100 fails because of host key problems but that's a different issue.) So surely (he says) if I can use PuTTY to connect to the Cygwin sshd server at 192.168.1.100 then the connection is routed through my router and is not local to the machine as in loopback with ssh localhost in that sense. However if I open the Windows Firewall with Advanced Security dialogue I cannot find any Windows firewall inbond rules that allow Cygwin SSH through (or anything similar). The domain, private and public profiles all say "Inbound connections that do not match a rule are blocked". Therefore the inbound connection through my router should be blocked. I'm worried that I might have a security hole somewhere. I don't want sshd open to the world just local to other machines on my local network (behind the router). This is a concern because since the machine is a laptop I might connect to the net with wifi in a coffee shop for example. Can someone give me a clue as to what's going on please? What am I looking for? i'm sure I must just be missing the obvious. Thanks very much in advance Mike -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple