cygwin and ssh

First, read [link|http://tech.erdelynet.com/cygwin-sshd.html|this]. Michael\r\nErdley's SSHD on Cygwin page an excellent howto on the topic, I've used\r\nit on multiple machines.

\r\n\r\n

For the permissions thing, a few points:

\r\n\r\n

SSH is insanely (or sanely) finicky about filesystem security. So\r\nyou need to get your permissions set right on a number of files,\r\nincluding public and private keys, configuration files, and a few other\r\nthings. Set your client to verbose, and check the server (XP) logs for\r\nany possible clues.
SSH under Cygwin in NOT secure against local\r\nexploitation. The local cygwin.dll provides a shared memory\r\nspace, which any local users (or processes) can access. The Cygwin docs\r\ndo mention this, but thought I'd remind y'all. Still, for\r\nproviding authentication and security on the wire, a reasonable choice.
I think I've seen this problem before. I'm trying to remember what\r\ncaused/resolved it...
...which may well have been "simple file sharing" under the legacy\r\nMS Windows File Exploder (pedantic: Windows Explorer) preferences.\r\nEither "Tools" or "View" menu, IIRC. Deselect this option. As a second\r\ncheck if that didn't make sense, right clicking on a file when the\r\noption is deselected will give you a "security" properties tab, when the\r\noption is selected, this tab is missing. Note that the\r\npreference says "recommended". Bollux. [link|http://www.annoyances.org/|Annoyances.org] doesn't mention it\r\nthat I can find, here's [link|http://www.jimthompson.net/xphome/File_Sharing.htm|an article]\r\nwith some additional info. I think that's the trick.

\r\n\r\n

If that didn't work, I'll fax you your dollar back.

\r\n

Post #85,826 by broomberg 3/5/03 4:10:33 PM Reply	cygwin and ssh I'll like to use my ssh key under Cygwin / WinXP to access my Linux boxen. I copyied it over the ~/.ssh/id_dsa file. I then did an "ssh-agent bash" and an "ssh-add". It tells me my private key permission are too open and refuses to use it. I tried to "chmod og-r id_dsa" and it give no error, but it also changes nothing. Any ideas?
Post #85,932 by kmself 3/5/03 11:48:36 PM Reply	A few thoughts on that First, read [link\|http://tech.erdelynet.com/cygwin-sshd.html\|this]. Michael\r\nErdley's SSHD on Cygwin page an excellent howto on the topic, I've used\r\nit on multiple machines. \r\n\r\n For the permissions thing, a few points: \r\n\r\n \r\n\r\n SSH is insanely (or sanely) finicky about filesystem security. So\r\nyou need to get your permissions set right on a number of files,\r\nincluding public and private keys, configuration files, and a few other\r\nthings. Set your client to verbose, and check the server (XP) logs for\r\nany possible clues. \r\n\r\n SSH under Cygwin in NOT secure against local\r\nexploitation. The local cygwin.dll provides a shared memory\r\nspace, which any local users (or processes) can access. The Cygwin docs\r\ndo mention this, but thought I'd remind y'all. Still, for\r\nproviding authentication and security on the wire, a reasonable choice. \r\n\r\n I think I've seen this problem before. I'm trying to remember what\r\ncaused/resolved it... \r\n\r\n ...which may well have been "simple file sharing" under the legacy\r\nMS Windows File Exploder (pedantic: Windows Explorer) preferences.\r\nEither "Tools" or "View" menu, IIRC. Deselect this option. As a second\r\ncheck if that didn't make sense, right clicking on a file when the\r\noption is deselected will give you a "security" properties tab, when the\r\noption is selected, this tab is missing. Note that the\r\npreference says "recommended". Bollux. [link\|http://www.annoyances.org/\|Annoyances.org] doesn't mention it\r\nthat I can find, here's [link\|http://www.jimthompson.net/xphome/File_Sharing.htm\|an article]\r\nwith some additional info. I think that's the trick. \r\n\r\n \r\n\r\n If that didn't work, I'll fax you your dollar back. \r\n --\r\n Karsten M. Self [link\|mailto:kmself@ix.netcom.com\|kmself@ix.netcom.com]\r\n [link\|http://kmself.home.netcom.com/\|http://kmself.home.netcom.com/]\r\n What part of "gestalt" don't you understand?\r\n [link\|http://twiki.iwethey.org/twiki/bin/view/Main/\|TWikIWETHEY] -- an experiment in collective intelligence. Stupidity. Whatever.\r\n \r\n Keep software free. Oppose the CBDTPA. Kill S.2048 dead.\r\n[link\|http://www.eff.org/alerts/20020322_eff_cbdtpa_alert.html\|http://www.eff.org/alerts/20020322_eff_cbdtpa_alert.html]\r\n
Post #86,966 by broomberg 3/9/03 9:24:34 PM Reply	Thanks I got distracted on other things and have not gotten back to this. Hopefully I'll try again tomorrow.
Post #97,864 by kmself 4/22/03 11:03:46 AM Reply	WRT Cygwin and shares, see also... ...[link\|http://twiki.iwethey.org/twiki/bin/view/Know/CygwinSshCantAccessShares\|this] at TWikIWeThey. --\r\n Karsten M. Self [link\|mailto:kmself@ix.netcom.com\|kmself@ix.netcom.com]\r\n [link\|http://kmself.home.netcom.com/\|http://kmself.home.netcom.com/]\r\n What part of "gestalt" don't you understand?\r\n [link\|http://twiki.iwethey.org/twiki/bin/view/Main/\|TWikIWETHEY] -- an experiment in collective intelligence. Stupidity. Whatever.\r\n \r\n Keep software free. Oppose the CBDTPA. Kill S.2048 dead.\r\n[link\|http://www.eff.org/alerts/20020322_eff_cbdtpa_alert.html\|http://www.eff.org/alerts/20020322_eff_cbdtpa_alert.html]\r\n

Welcome to IWETHEY!