public key authentication headache issue/solution documentation
Larry Hall (Cygwin)
Fri Apr 13 18:56:00 GMT 2007
Florian Mosleh wrote:
> I've just resolved an issue I had with public key authentication for ssh
> in cygwyn. I needed to automate an rsync pull from a box running cygwyn.
> The client is an antiquated redhat system. I was unable to successfully
> execute remote commands after authenticating with a keypair. I was
> finally able to resolve the issue by running the sshd service as the
> user used for authenticating the ssh session and chowning various ssh
> related files to the user (notably /var/log/sshd.log). I'd like to
> recommend more documentation on this issue. It had a relatively simple
> fix which, nonetheless, eluded me for several days.
This is part of the FAQ, though all the nitty-gritty isn't there for
"recovering" from running it as a privileged user (SYSTEM, sshd_server,
etc). It is in the email archives though (exact pointer left as an
exercise for the reader ;-) ).:
> If you have an alternate recommendation that better conforms to best
> practices, please let me know. The ssh-host-config script spews various
> useful bits of knowledge. Something along the lines of "For possible
> issues with public key authentication please see <file>" might be nice.
For the upcoming Cygwin 1.7, there is an authentication module that will
make the above gyrations unnecessary. If you're interested in
investigating this, grab a snapshot <http://cygwin.com/snapshots/> and
read the thread:
Larry Hall http://www.rfk.com
RFK Partners, Inc. (508) 893-9779 - RFK Office
216 Dalton Rd. (508) 893-9889 - FAX
Holliston, MA 01746
> Q: Are you sure?
>> A: Because it reverses the logical flow of conversation.
>>> Q: Why is top posting annoying in email?
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
More information about the Cygwin