This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: using sshd as a non-administrator: minor issues and an aliasing question

On Oct 29 15:35, Igor Peshansky wrote:
> On Wed, 25 Oct 2006, Thorsten Kampe wrote:
> > * eyalroz (Wed, 25 Oct 2006 03:18:26 -0700 (PDT))
> >
> > > 3. How do I add new username/password combinations other than my real
> > > NT username and password? I want the sshd to only accept
> > > myalias/tehfauxpass instead of myrealuser/therealpass , and of course
> > > not try to switch users to myalias but rather allow work as
> > > myrealuser.
> >
> > Can't be done in my opinion as /etc/passwd is just a wrapper to the
> > SAM where the real password hashes are stored.
> Well, technically, if you omit the SID from the passwd entry, Cygwin may
> use the crypt'ed password in the second field, but the resulting user
> token would be pretty useless, as it will bear no relation to the real
> Windows user...  Corinna will probably have more to say on this...

Not really.  Thorsten is correct.  Cygwin, the DLL, never uses the passwd
field.  The crypt library does.  I don't understand the sense behind the
the above approach anyway.  Security by obscurity?  Why not use pubkey
authentication with passphrase instead?


Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat

Unsubscribe info:
Problem reports:

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]