openssh 5.1p1-3 / ssh-host-config dependency and permission issues

Karl Herrick karl.herrick@millbrookprinting.com
Tue Oct 7 19:52:00 GMT 2008


The scope of this post is have an OpenSSH server running on top of 
Windows XP Professional without dependency errors or permission issues 
during the setup.

On 2008-06-28 a system was installed from scratch with the following specs:

   Windows XP Professional SP2
   setup.exe 2.573.2.2
   OpenSSH 4.7p1-2 and the associated dependencies

Today when trying to build a similar system,

   Windows XP Professional SP3
   setup.exe 2.573.2.3
   OpenSSH 5.1p1-3 and the associated dependencies

two problems are encountered:

1. An error is received in regard to diffutils not being installed when 
running ssh-host-config:
*** ERROR: Could not find or execute required program cmp.
*** ERROR: Please install diffutils

2. Various permission errors arise while running ssh-host-config:
*** Warning: The file /etc/passwd is not readable by all.
*** Warning: Please run 'chmod +r /etc/passwd'.
*** Warning: The file /etc/group is not readable by all.
*** Warning: Please run 'chmod +r /etc/group'.
*** ERROR: Problem with LocalSystem or Adminstrator IDs

and separately after rerunning ssh-host-config:

*** Warning: The permissions on the directory /var are not correct.
*** Warning: They must match the regexp d..x..x..[xt]
*** ERROR: Problem with /var directory. Exiting.

Four questions:

1. Should diffutils automatically be installed as a dependency of 
openssh so that this error doesn't come up in regard to it not being 
installed while running ssh-host-config?

2. Should these permissions be different on a default cygwin install so 
that openssh can be installed and ssh-host-config can be executed 
without permission errors?

3. Is it safe to make the necessary permission changes to the various 
files and directores (/etc/passwd, /etc/group, and /var) that openssh is 
requesting changes to in order to "force" it to work?

4. If indeed these issues are due to a bug, are there appropriate places 
to file necessary bug reports in order to keep track of if/when they 
will be resolved?

Thanks for your time and consideration of these issues that have been 
noticed.

---

Reproduce steps:

1. Download setup.exe version 2.573.2.3 and place into "C:\cygwin-install\".
2. Go through the setup wizard with defaults except:
2.a Select a mirror.
2.b Click once on the "Net/openssh" package (at the time of this post it 
indicates it will install version 5.1p1-3 and the associated dependencies).
3. Execute "C:\cygwin\Cygwin.bat".
4. Within the newly launched shell, execute "ssh-host-config".

The following is returned:

######################
$ ssh-host-config
*** Info: Generating /etc/ssh_host_key
*** Info: Generating /etc/ssh_host_rsa_key
*** Info: Generating /etc/ssh_host_dsa_key
*** ERROR: Could not find or execute required program cmp.
*** ERROR: Please install diffutils
######################

5. Close the shell and launch "C:\cygwin-install\setup.exe".
6. Go through the setup wizard with defaults except:
6.a Click once on the "Utils/diffutils" package (at the time of this 
post it indicates it will install version 2.8.7-1 and the associated 
dependencies).
7. Execute "C:\cygwin\Cygwin.bat".
8. Within the newly launched shell, execute "ssh-host-config".
9. Answer "yes" to the "Should privilege separation be used? (yes/no)" 
query.

The following is returned:

######################
*** Warning: The file /etc/passwd is not readable by all.
*** Warning: Please run 'chmod +r /etc/passwd'.
*** Warning: The file /etc/group is not readable by all.
*** Warning: Please run 'chmod +r /etc/group'.
*** ERROR: Problem with LocalSystem or Adminstrator IDs
######################

10. Within the shell, exectue "chmod +r /etc/passwd".
11. Within the shell, exectue "chmod +r /etc/group".
12. Within the shell, execute "ssh-host-config".
13. Answer "yes" to the "Overwrite existing /etc/ssh_config file? 
(yes/no)" query.
14. Answer "yes" to the "Overwrite existing /etc/sshd_config file? 
(yes/no)" query.
15. Answer "yes" to the "Should privilege separation be used? (yes/no)" 
query.

The following is returned:

######################
*** Warning: The permissions on the directory /var are not correct.
*** Warning: They must match the regexp d..x..x..[xt]
*** ERROR: Problem with /var directory. Exiting.
######################

16. Within the shell, execute "ls -ld /var"

The following is returned:

######################
drwxrwx---+ 8 ladmin Users 0 Oct  7 11:38 /var
######################

17. Within the shell, execute "chmod o+x /var"
18. Within the shell, execute "ssh-host-config".
19. Answer "yes" to the "Overwrite existing /etc/ssh_config file? 
(yes/no)" query.
20. Answer "yes" to the "Overwrite existing /etc/sshd_config file? 
(yes/no)" query.
21. Answer "yes" to the "Should privilege separation be used? (yes/no)" 
query.
22. Answer "yes" to the "new local account 'sshd'? (yes/no)" query.
23. Answer "yes" to the "Do you want to install sshd as a service? (Say 
"no" if it is already installed as a service) (yes/no)" query.
24. Press the "Enter" key in regard to the "Enter the value of CYGWIN 
for the daemon: [ntsec]" query.
25. Within the shell, execute "cygrunsrv -S sshd"
26. Completing the setup via "ssh-user-config" etc...

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/



More information about the Cygwin mailing list