Question about "rexec"

Andrew DeFaria ADeFaria@Salira.com
Fri May 23 18:17:00 GMT 2003 

Larry Hall (RFK Partners, Inc.) wrote:

> Andrew DeFaria wrote:
>
>> Bill C. Riemers wrote:
>>
>>> You might also want to check the ownership of your home directory 
>>> and .ssh directory, as that is the only thing I can think of that 
>>> would cause the touch error in your previous message.  If ownership 
>>> or permissions are wrong, then sshd defaults to require a password 
>>> rather than trusting that nobody else has changed the key files.
>>
>> Herein I believe my difficulties lie. That an not understanding 
>> Windows permissions vs Unix permissions and how such things are 
>> mapped. Here's what I do know:
>>
>> $ cd ~/.ssh
>> $ ls -l
>> total 6
>> -rw-r--r--    1 adefaria Domain U      227 May 22 17:10 authorized_keys
>> -rw-r--r--    1 adefaria Domain U      227 May 22 15:25 authorizedkeys
>> -rw-r--r--    1 adefaria Domain U      887 May 22 15:22 id_rsa
>> -rw-r--r--    1 adefaria Domain U      227 May 22 15:22 id_rsa.pub
>> -rw-r--r--    1 adefaria Domain U     1624 May 22 15:19 known_hosts
>> $ chmod 600 id_rsa*
>> $ ls -l
>> total 6
>> -rw-r--r--    1 adefaria Domain U      227 May 22 17:10 authorized_keys
>> -rw-r--r--    1 adefaria Domain U      227 May 22 15:25 authorizedkeys
>> -rw-r--r--    1 adefaria Domain U      887 May 22 15:22 id_rsa
>> -rw-r--r--    1 adefaria Domain U      227 May 22 15:22 id_rsa.pub
>> -rw-r--r--    1 adefaria Domain U     1624 May 22 15:19 known_hosts
>>
>> Nothing. So I go into Windows Explorer and look at the Security 
>> setting on the Properties dialog. I attempt to remove the users in 
>> the Security section and it tells me that I have to stop inheriting 
>> permissions. So I go to stop inheriting permissions and tell it to 
>> remove everything. Now nobody's listed in the Securities section. 
>> Windows warns me that only the create of the file will be able to 
>> access it. I look in Cygwin with ls -l and the mode bits are the 
>> same. I try the chmod again and there is no change! So I add my user 
>> back to having full control. My user is the only user listed now but 
>> the mode bits are still 644.
>>
>> When I try to ssh $(hostname) cmd I get:
>>
>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
>> @         WARNING: UNPROTECTED PRIVATE KEY FILE!          @
>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
>> Permissions 0644 for '/us/adefaria/.ssh/id_rsa' are too open.
>> It is recommended that your private key files are NOT accessible by 
>> others.
>> This private key will be ignored.
>> bad permissions: ignore key: /us/adefaria/.ssh/id_rsa
>>
>> Now what?!?
>>
>> (It would be nice if somebody who really knew the algorithm could 
>> explain Windows permissions and how they are mapped to Unix mode bits).
>
> Or you could just look at the FAQ:
>
> Why doesn't chmod work?
> <http://cygwin.com/faq/faq_toc.html#TOC45> 

All that this says is to insure that you have ntsec set. I have it set. 
chmod still doesn't work! BTW I'm on Windows XP and use NTFS. My home 
directory is on the server (/us is a mount of //<server>/<share>).

Next idea?

P.S. It would still be nice if somebody who really knew the algorithm 
could explain Windows permissions and how they are mapped to Unix mode bits!



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

More information about the Cygwin mailing list