This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: sshd fails to start: logon failure


On 2/14/2013 5:07 PM, Ryan Johnson wrote:
On 14/02/2013 4:19 PM, Larry Hall (Cygwin) wrote:
On 2/14/2013 4:02 PM, Ryan Johnson wrote:
On 14/02/2013 3:52 PM, marco atzeri wrote:
On 2/14/2013 9:43 PM, Ryan Johnson wrote:
Hi all,

I tried to ssh to my cygwin box today and was unable to connect. It
seems the sshd service can no longer run, for reasons that mystify me:
# net start sshd
System error 1069 has occurred.

The service did not start due to a logon failure.

I wasn't aware of having changed anything; would it be advisable to just reinstall sshd from setup.exe and/or sshd_host_config, or is there some simple troubleshooting I might do?

reinstall is not the way. Likely something reset the cyg_server privileges. Try to re-enable them with

editrights -u cyg_server -a SeAssignPrimaryTokenPrivilege
editrights -u cyg_server -a SeCreateTokenPrivilege
editrights -u cyg_server -a SeTcbPrivilege
editrights -u cyg_server -a SeServiceLogonRight
editrights -u cyg_server -a SeIncreaseQuotaPrivilege
No luck, the same error still occurs. However, now that you mention it, I
did play with cygserver settings while trying to install pgsql a while back.

Is there a way to view the privileges to see what I may have broken?

$ editrights -u cyg_server -l SeAssignPrimaryTokenPrivilege SeCreateTokenPrivilege SeTcbPrivilege SeServiceLogonRight SeDenyRemoteInteractiveLogonRight
Mine has all those, plus SeIncreaseQuotaPrivilege (possibly thanks to the
above from Marco).

It seems that I managed to de-configure sshd somehow. There's no sshd_config
in /etc/ (just the skeleton in /etc/defaults/), and sshd-host-config doesn't
seem to exist, either. So, I blew away the sshd and cygrunsrv services and
their associated users and re-ran ssh-host-config. All is well now... except
that now an enormous ascii art hippo greets me at login. Ick.

Just be glad the hippo isn't flying! ;-)


Or you could change/remove /etc/motd.

--
Larry

_____________________________________________________________________

A: Yes.
> Q: Are you sure?
>> A: Because it reverses the logical flow of conversation.
>>> Q: Why is top posting annoying in email?

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]