newbie to setting up ssh needs help

Manning, Sid sidneym@qualcomm.com
Mon Oct 20 20:57:00 GMT 2008


I've had issues with the file permissions in .ssh in the past, mine are all 600.  I use the following when I need to add ssh access to a new account:
        cd $HOME
        chmod 0700 .ssh
        ssh-keygen -t dsa -f $HOME/.ssh/id_dsa -P ''
        cd $HOME/.ssh
        cp id_dsa.pub authorized_keys2
        chmod 0600 authorized_keys2

> -----Original Message-----
> From: cygwin-owner@cygwin.com [mailto:cygwin-owner@cygwin.com] On Behalf
> Of Ken Marshall
> Sent: Monday, October 20, 2008 3:49 PM
> To: cygwin@cygwin.com
> Subject: newbie to setting up ssh needs help
> 
>  Hello,
> 
>      I'm requesting help getting ssh properly configured on a Win 2003
> Server SP2.  I've installed sshd and gotten it running using priv sep
> and the default sshd account.  Here are the hosts.* and directory
> listings with the output of a login attempt to localhost.  Any help
> would be greatly appreciated.
> 
>  Thank You,
> 
>  Ken
> 
> 
>  **************************
>  $ cat hosts.deny
>  #
>  # hosts.deny    This file describes the names of the hosts which are
>  #               *not* allowed to use the local INET services, as decided
>  #               by the '/usr/sbin/tcpd' server.
>  #
>  #ALL:ALL EXCEPT localhost:DENY
> 
> 
>  kmarshall@**** /etc
>  $ cat hosts.allow
>  #
>  # hosts.allow   This file describes the names of the hosts which are
>  #               allowed to use the local INET services, as decided
>  #               by the '/usr/sbin/tcpd' server.
>  #
>  #               CYGWIN note: if you use a software firewall (such
>  #               as ZoneAlarm or the "Windows Firewall" in Windows
>  #               XP), you must also open a 'hole' at the proper
>  #               port for the services you enable below.
>  #
>  #ALL : PARANOID : deny
>  sshd: localhost : allow
> 
>  *******************
>  $ ls -ltr
>  total 174
>  -rwxr-x---+  1 SYSTEM Users  13717 Apr 21  2005 termcap
>  -rwxr-x---+  1 SYSTEM Users 125811 Jul 22 10:46 moduli
>  drwxrwx---+  4 SYSTEM Users      0 Oct 16 15:04 defaults
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:05 bash_completion.d
>  -rwxr-x---+  1 SYSTEM Users   4385 Oct 16 15:05 DIR_COLORS
>  drwxrwx---+  5 SYSTEM Users      0 Oct 16 15:05 apache2
>  lrwxrwxrwx   1 SYSTEM Users     37 Oct 16 15:05 hosts - C:\WINDOWS\syst
>  vers\etc\hosts
>  lrwxrwxrwx   1 SYSTEM Users     40 Oct 16 15:05 protocols - C:\WINDOWS\
>  \drivers\etc\protocol
>  lrwxrwxrwx   1 SYSTEM Users     40 Oct 16 15:05 services - C:\WINDOWS\s
>  drivers\etc\services
>  lrwxrwxrwx   1 SYSTEM Users     40 Oct 16 15:05 networks - C:\WINDOWS\s
>  drivers\etc\networks
>  -rwxr-x---+  1 SYSTEM Users    301 Oct 16 15:06 bash.bashrc
>  -rwxr-x---+  1 SYSTEM Users   6533 Oct 16 15:06 profile
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:06 skel
>  drwxrwx---+  4 SYSTEM Users      0 Oct 16 15:29 fonts
>  drwxrwx---+  3 SYSTEM Users      0 Oct 16 15:29 rc.d
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:31 profile.d
>  drwxrwx---+ 13 SYSTEM Users      0 Oct 16 15:32 X11
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:32 setup
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:32 pango
>  drwx------+  2 SYSTEM Users      0 Oct 16 15:32 gtk-2.0
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:32 preremove
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:32 alternatives
>  drwxrwx---+  2 SYSTEM Users      0 Oct 16 15:32 postinstall
>  -rwxr-x---+  1 SYSTEM Users    226 Oct 20 14:34 hosts.deny
>  -rwxr-x---+  1 SYSTEM Users    463 Oct 20 15:02 hosts.allow
>  -rwxr-xr--+  1 SYSTEM Users   2866 Oct 20 15:13 passwd
>  -rwxr-xr--+  1 SYSTEM Users   1633 Oct 20 15:13 group
>  -rw-r--r--   1 sshd   Users    644 Oct 20 15:17 ssh_host_key.pub
>  -rw-------   1 sshd   Users    980 Oct 20 15:17 ssh_host_key
>  -rw-r--r--   1 sshd   Users    399 Oct 20 15:17 ssh_host_rsa_key.pub
>  -rw-------   1 sshd   Users   1675 Oct 20 15:17 ssh_host_rsa_key
>  -rw-r--r--   1 sshd   Users    607 Oct 20 15:17 ssh_host_dsa_key.pub
>  -rw-------   1 sshd   Users    668 Oct 20 15:17 ssh_host_dsa_key
>  -rwxr-x---   1 sshd   Users   1482 Oct 20 15:53 ssh_config
>  -rw-r--r--   1 sshd   Users   3258 Oct 20 15:54 sshd_config
> 
>  kmarshall@***** /etc
>  $ net start sshd
>  The CYGWIN sshd service is starting.
>  The CYGWIN sshd service was started successfully.
> 
>  ********************************
> 
>  $ ls -la
>  total 10
>  drwxr-xr-x+ 3 kmarshall Users    0 Oct 20 15:55 .
>  drwxrwxrwx+ 3 kmarshall None     0 Oct 16 15:35 ..
>  -rw-------  1 kmarshall Users 1352 Oct 20 14:35 .bash_history
>  -rwxr-xr-x  1 kmarshall Users 1150 Oct 16 15:06 .bash_profile
>  -rwxr-xr-x  1 kmarshall Users 3116 Oct 16 15:06 .bashrc
>  -rwxr-xr-x  1 kmarshall Users 1461 Oct 16 15:06 .inputrc
>  drwxr-xr-x+ 2 kmarshall Users    0 Oct 20 15:56 .ssh
> 
>  kmarshall@*** ~
>  $ cd .ssh
> 
>  ls -trl
>  total 5
>  -rw-r--r-- 1 kmarshall Users  399 Oct 20 15:55 id_rsa.pub
>  -rwxr----- 1 kmarshall Users 1675 Oct 20 15:55 id_rsa
>  -rwxr----- 1 kmarshall Users  399 Oct 20 15:56 authorized_keys
>  -rw-r--r-- 1 kmarshall Users  391 Oct 20 15:56 known_hosts
> 
> 
> 
>  ************
>  $ ssh -v localhost
>  OpenSSH_5.1p1, OpenSSL 0.9.8i 15 Sep 2008
>  debug1: Reading configuration data /etc/ssh_config
>  debug1: Connecting to localhost [127.0.0.1] port 22.
>  debug1: Connection established.
>  debug1: identity file /home/kmarshall/.ssh/identity type -1
>  debug1: identity file /home/kmarshall/.ssh/id_rsa type 1
>  debug1: identity file /home/kmarshall/.ssh/id_dsa type -1
>  debug1: Remote protocol version 2.0, remote software version OpenSSH_5.1
>  debug1: match: OpenSSH_5.1 pat OpenSSH*
>  debug1: Enabling compatibility mode for protocol 2.0
>  debug1: Local version string SSH-2.0-OpenSSH_5.1
>  debug1: SSH2_MSG_KEXINIT sent
>  debug1: SSH2_MSG_KEXINIT received
>  debug1: kex: server-client aes128-cbc hmac-md5 none
>  debug1: kex: client-server aes128-cbc hmac-md5 none
>  debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
>  debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
>  debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
>  debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
>  debug1: Host 'localhost' is known and matches the RSA host key.
>  debug1: Found key in /home/kmarshall/.ssh/known_hosts:1
>  debug1: ssh_rsa_verify: signature correct
>  debug1: SSH2_MSG_NEWKEYS sent
>  debug1: expecting SSH2_MSG_NEWKEYS
>  debug1: SSH2_MSG_NEWKEYS received
>  debug1: SSH2_MSG_SERVICE_REQUEST sent
>  debug1: SSH2_MSG_SERVICE_ACCEPT received
>  debug1: Authentications that can continue:
> publickey,password,keyboard-interacti
>  ve
>  debug1: Next authentication method: publickey
>  debug1: Trying private key: /home/kmarshall/.ssh/identity
>  debug1: Offering public key: /home/kmarshall/.ssh/id_rsa
>  Connection closed by 127.0.0.1
> 
> --
> Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
> Problem reports:       http://cygwin.com/problems.html
> Documentation:         http://cygwin.com/docs.html
> FAQ:                   http://cygwin.com/faq/


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/



More information about the Cygwin mailing list