newbie to setting up ssh needs help
Manning, Sid
sidneym@qualcomm.com
Mon Oct 20 20:57:00 GMT 2008
I've had issues with the file permissions in .ssh in the past, mine are all 600. I use the following when I need to add ssh access to a new account:
cd $HOME
chmod 0700 .ssh
ssh-keygen -t dsa -f $HOME/.ssh/id_dsa -P ''
cd $HOME/.ssh
cp id_dsa.pub authorized_keys2
chmod 0600 authorized_keys2
> -----Original Message-----
> From: cygwin-owner@cygwin.com [mailto:cygwin-owner@cygwin.com] On Behalf
> Of Ken Marshall
> Sent: Monday, October 20, 2008 3:49 PM
> To: cygwin@cygwin.com
> Subject: newbie to setting up ssh needs help
>
> Hello,
>
> I'm requesting help getting ssh properly configured on a Win 2003
> Server SP2. I've installed sshd and gotten it running using priv sep
> and the default sshd account. Here are the hosts.* and directory
> listings with the output of a login attempt to localhost. Any help
> would be greatly appreciated.
>
> Thank You,
>
> Ken
>
>
> **************************
> $ cat hosts.deny
> #
> # hosts.deny This file describes the names of the hosts which are
> # *not* allowed to use the local INET services, as decided
> # by the '/usr/sbin/tcpd' server.
> #
> #ALL:ALL EXCEPT localhost:DENY
>
>
> kmarshall@**** /etc
> $ cat hosts.allow
> #
> # hosts.allow This file describes the names of the hosts which are
> # allowed to use the local INET services, as decided
> # by the '/usr/sbin/tcpd' server.
> #
> # CYGWIN note: if you use a software firewall (such
> # as ZoneAlarm or the "Windows Firewall" in Windows
> # XP), you must also open a 'hole' at the proper
> # port for the services you enable below.
> #
> #ALL : PARANOID : deny
> sshd: localhost : allow
>
> *******************
> $ ls -ltr
> total 174
> -rwxr-x---+ 1 SYSTEM Users 13717 Apr 21 2005 termcap
> -rwxr-x---+ 1 SYSTEM Users 125811 Jul 22 10:46 moduli
> drwxrwx---+ 4 SYSTEM Users 0 Oct 16 15:04 defaults
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:05 bash_completion.d
> -rwxr-x---+ 1 SYSTEM Users 4385 Oct 16 15:05 DIR_COLORS
> drwxrwx---+ 5 SYSTEM Users 0 Oct 16 15:05 apache2
> lrwxrwxrwx 1 SYSTEM Users 37 Oct 16 15:05 hosts - C:\WINDOWS\syst
> vers\etc\hosts
> lrwxrwxrwx 1 SYSTEM Users 40 Oct 16 15:05 protocols - C:\WINDOWS\
> \drivers\etc\protocol
> lrwxrwxrwx 1 SYSTEM Users 40 Oct 16 15:05 services - C:\WINDOWS\s
> drivers\etc\services
> lrwxrwxrwx 1 SYSTEM Users 40 Oct 16 15:05 networks - C:\WINDOWS\s
> drivers\etc\networks
> -rwxr-x---+ 1 SYSTEM Users 301 Oct 16 15:06 bash.bashrc
> -rwxr-x---+ 1 SYSTEM Users 6533 Oct 16 15:06 profile
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:06 skel
> drwxrwx---+ 4 SYSTEM Users 0 Oct 16 15:29 fonts
> drwxrwx---+ 3 SYSTEM Users 0 Oct 16 15:29 rc.d
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:31 profile.d
> drwxrwx---+ 13 SYSTEM Users 0 Oct 16 15:32 X11
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:32 setup
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:32 pango
> drwx------+ 2 SYSTEM Users 0 Oct 16 15:32 gtk-2.0
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:32 preremove
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:32 alternatives
> drwxrwx---+ 2 SYSTEM Users 0 Oct 16 15:32 postinstall
> -rwxr-x---+ 1 SYSTEM Users 226 Oct 20 14:34 hosts.deny
> -rwxr-x---+ 1 SYSTEM Users 463 Oct 20 15:02 hosts.allow
> -rwxr-xr--+ 1 SYSTEM Users 2866 Oct 20 15:13 passwd
> -rwxr-xr--+ 1 SYSTEM Users 1633 Oct 20 15:13 group
> -rw-r--r-- 1 sshd Users 644 Oct 20 15:17 ssh_host_key.pub
> -rw------- 1 sshd Users 980 Oct 20 15:17 ssh_host_key
> -rw-r--r-- 1 sshd Users 399 Oct 20 15:17 ssh_host_rsa_key.pub
> -rw------- 1 sshd Users 1675 Oct 20 15:17 ssh_host_rsa_key
> -rw-r--r-- 1 sshd Users 607 Oct 20 15:17 ssh_host_dsa_key.pub
> -rw------- 1 sshd Users 668 Oct 20 15:17 ssh_host_dsa_key
> -rwxr-x--- 1 sshd Users 1482 Oct 20 15:53 ssh_config
> -rw-r--r-- 1 sshd Users 3258 Oct 20 15:54 sshd_config
>
> kmarshall@***** /etc
> $ net start sshd
> The CYGWIN sshd service is starting.
> The CYGWIN sshd service was started successfully.
>
> ********************************
>
> $ ls -la
> total 10
> drwxr-xr-x+ 3 kmarshall Users 0 Oct 20 15:55 .
> drwxrwxrwx+ 3 kmarshall None 0 Oct 16 15:35 ..
> -rw------- 1 kmarshall Users 1352 Oct 20 14:35 .bash_history
> -rwxr-xr-x 1 kmarshall Users 1150 Oct 16 15:06 .bash_profile
> -rwxr-xr-x 1 kmarshall Users 3116 Oct 16 15:06 .bashrc
> -rwxr-xr-x 1 kmarshall Users 1461 Oct 16 15:06 .inputrc
> drwxr-xr-x+ 2 kmarshall Users 0 Oct 20 15:56 .ssh
>
> kmarshall@*** ~
> $ cd .ssh
>
> ls -trl
> total 5
> -rw-r--r-- 1 kmarshall Users 399 Oct 20 15:55 id_rsa.pub
> -rwxr----- 1 kmarshall Users 1675 Oct 20 15:55 id_rsa
> -rwxr----- 1 kmarshall Users 399 Oct 20 15:56 authorized_keys
> -rw-r--r-- 1 kmarshall Users 391 Oct 20 15:56 known_hosts
>
>
>
> ************
> $ ssh -v localhost
> OpenSSH_5.1p1, OpenSSL 0.9.8i 15 Sep 2008
> debug1: Reading configuration data /etc/ssh_config
> debug1: Connecting to localhost [127.0.0.1] port 22.
> debug1: Connection established.
> debug1: identity file /home/kmarshall/.ssh/identity type -1
> debug1: identity file /home/kmarshall/.ssh/id_rsa type 1
> debug1: identity file /home/kmarshall/.ssh/id_dsa type -1
> debug1: Remote protocol version 2.0, remote software version OpenSSH_5.1
> debug1: match: OpenSSH_5.1 pat OpenSSH*
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_5.1
> debug1: SSH2_MSG_KEXINIT sent
> debug1: SSH2_MSG_KEXINIT received
> debug1: kex: server-client aes128-cbc hmac-md5 none
> debug1: kex: client-server aes128-cbc hmac-md5 none
> debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
> debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
> debug1: Host 'localhost' is known and matches the RSA host key.
> debug1: Found key in /home/kmarshall/.ssh/known_hosts:1
> debug1: ssh_rsa_verify: signature correct
> debug1: SSH2_MSG_NEWKEYS sent
> debug1: expecting SSH2_MSG_NEWKEYS
> debug1: SSH2_MSG_NEWKEYS received
> debug1: SSH2_MSG_SERVICE_REQUEST sent
> debug1: SSH2_MSG_SERVICE_ACCEPT received
> debug1: Authentications that can continue:
> publickey,password,keyboard-interacti
> ve
> debug1: Next authentication method: publickey
> debug1: Trying private key: /home/kmarshall/.ssh/identity
> debug1: Offering public key: /home/kmarshall/.ssh/id_rsa
> Connection closed by 127.0.0.1
>
> --
> Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
> Problem reports: http://cygwin.com/problems.html
> Documentation: http://cygwin.com/docs.html
> FAQ: http://cygwin.com/faq/
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
More information about the Cygwin
mailing list