Cygwin SSH Multiple Users

Larry Hall (Cygwin) reply-to-list-only-lh@cygwin.com
Thu Jun 4 18:59:00 GMT 2009 

Holikar, Sachin (ext) wrote:
> Hello,
> 
> Thanks for the info Corinna but ultimately we aint able to start the service somehow. And only way to start is to start with the user mac using /usr/sbin/sshd.
> But then no other user can connect via ssh to this machine. The work around we provided was copiying the ssh public keys of the user say admin and then
> connecting from remote machine using ssh -l mac winxp and then admin gets the ssh access as mac. 
> But now the requirement is to be able to login as different users to this machine and we are stuck up. Really confused what went wrong.
> Any hint will be much appreciated.

Once you've started "sshd.exe" from the command line as come non-privileged
user (and this includes the Administrator account or members of that group
in this context), you won't be able to start "sshd.exe" as another user
(even as "SYSTEM" on XP) without changing the ownership of many files
that "sshd.exe" uses/needs.  See the email archives and/or the contents of
'ssh-host-config' for details.  Also, it is quite expected that "sshd.exe"
running as a non-privileged user cannot switch users with public key
authentication.  That's why "ssh-host-config" sets up "sshd.exe" to run
under the privileged "SYSTEM" account on XP.  If you don't want to do this
for some reason, you should read the openssh readme in
'/usr/share/doc/Cygwin' for the required privileges of the user running
"sshd.exe" that would permit this.  Of course, doing this really puts you
in the realm of "you know what you're doing" so you may not get allot of
willing responses from queries to this list with problems you have if you
go this route. ;-)

Good luck,

-- 
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

More information about the Cygwin mailing list