RepoMirrors/openssh
1
0
Fork 0
mirror of git://anongit.mindrot.org/openssh.git synced 2025-01-12 12:49:29 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,797 Commits 69 Branches 157 Tags 27 MiB
edb0bcb3c7
Commit Graph

46 Commits

Author SHA1 Message Date
Darren Tucker
825ab32f0d On Cygwin run sshd as SYSTEM where possible. 
Seteuid now creates user token using S4U.  We don't create a token
from scratch anymore, so we don't need the "Create a process token"
privilege.  The service can run under SYSTEM again...

...unless Cygwin is running on Windows Vista or Windows 7 in the
WOW64 32 bit emulation layer.  It turns out that WOW64 on these systems
didn't implement MsV1_0 S4U Logon so we still need the fallback
to NtCreateToken for these systems.

Signed-off-by: Corinna Vinschen <vinschen@redhat.com>
 2019-03-14 08:51:17 +11:00
Corinna Vinschen
1d05b4adcb Cygwin: only tweak sshd_config file if it's new, drop creating sshd user 
The sshd_config tweaks were executed even if the old file was
still in place.  Fix that.  Also disable sshd user creation.
It's not used on Cygwin.
 2019-01-28 09:57:58 +11:00
Corinna Vinschen
89843de0c4 Cygwin: Change service name to cygsshd 
Microsoft hijacked the sshd service name without asking.
 2019-01-28 09:57:58 +11:00
Darren Tucker
f2970868f8 Improve warnings in cygwin service setup. 
bz#2922, patch from vinschen at redhat.com.
 2018-11-11 15:58:20 +11:00
Darren Tucker
bd2d54fc1e Remove hardcoded service name in cygwin setup. 
bz#2922, patch from Christian.Lupien at USherbrooke.ca, sanity check
by vinschen at redhat.com.
 2018-11-11 15:54:54 +11:00
Damien Miller
10479cc2a4 Many typo fixes from Karsten Weiss 
Spotted using https://github.com/lucasdemarchi/codespell
 2018-04-10 10:19:02 +10:00
Damien Miller
55a1117d73 Adapt Cygwin config script to privsep knob removal 
Patch from Corinna Vinschen.
 2017-03-16 11:22:42 +11:00
Damien Miller
867f49c666 Avoid Cygwin ssh-host-config reading /etc/group 
Patch from Corinna Vinschen
 2014-11-26 13:22:41 +11:00
Damien Miller
8b66f36291 allow custom service name for sshd on Cygwin 
Permits the use of multiple sshd running with different service names.

Patch by Florian Friesdorf via Corinna Vinschen
 2014-11-26 13:20:35 +11:00
Damien Miller
0e4cff5f35 Prepare scripts for next Cygwin release 
Makes the Cygwin-specific ssh-user-config script independent of the
existence of /etc/passwd.  The next Cygwin release will allow to
generate passwd and group entries from the Windows account DBs, so the
scripts have to adapt.

from Corinna Vinschen
 2014-11-05 11:01:31 +11:00
Damien Miller
44988defb1 - (djm) [contrib/cygwin/ssh-host-config] Fix old code leading to 
permissions/ACLs; from Corinna Vinschen
 2014-09-03 05:35:32 +10:00
Damien Miller
f9eb5e0734 - (djm) [contrib/cygwin/ssh-host-config] Updated Cygwin ssh-host-config 
from Corinna Vinschen, fixing a number of bugs and preparing for
   Cygwin 1.7.30.
 2014-05-27 14:31:58 +10:00
Darren Tucker
aff7ef1bb8 - (dtucker) [contrib/cygwin/ssh-host-config] Simplify host key generation: 
rather than testing and generating each key, call ssh-keygen -A.
   Patch from vinschen at redhat.com.
 2013-11-09 00:19:22 +11:00
Darren Tucker
b7482cff46 - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config 
contrib/cygwin/ssh-user-config] Modernizes and improve readability of
   the Cygwin README file (which hasn't been updated for ages), drop
   unsupported OSes from the ssh-host-config help text, and drop an
   unneeded option from ssh-user-config.  Patch from vinschen at redhat com.
 2013-07-02 20:06:46 +10:00
Darren Tucker
62dcd63f5e - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as 
can logon as a service.  Patch from vinschen at redhat com.
 2012-06-22 22:02:42 +10:00
Darren Tucker
e541aaaf0f - (dtucker) [contrib/cygwin/ssh-host-config] From Corinna: revamp of the 
Cygwin-specific service installer script ssh-host-config.  The actual
   functionality is the same, the revisited version is just more
   exact when it comes to check for problems which disallow to run
   certain aspects of the script.  So, part of this script and the also
   rearranged service helper script library "csih" is to check if all
   the tools required to run the script are available on the system.
   The new script also is more thorough to inform the user why the
   script failed.  Patch from vinschen at redhat com.
 2011-02-21 21:41:29 +11:00
Darren Tucker
ea676a6422 - (dtucker) [contrib/cygwin/ssh-{host,user}-config] Add ECDSA key 
generation and simplify.  Patch from Corinna Vinschen.
 2011-02-06 13:31:23 +11:00
Darren Tucker
62131dc6e2 - (dtucker) [contrib/cygwin/ssh-host-config] Mount the Windows directory 
containing the services file explicitely case-insensitive.  This allows to
   tweak the Windows services file reliably.  Patch from vinschen at redhat.
 2010-03-24 13:03:32 +11:00
Darren Tucker
8fdcba5caf - (dtucker [contrib/cygwin/ssh-{host,user}-config] Add license text. Patch 
from Corinna Vinschen.
 2009-07-12 21:58:42 +10:00
Darren Tucker
4d4fdc0f7d - (dtucker) [contrib/cygwin/ssh-host-config] better support for automated 
scripts and fix usage of eval.  Patch from Corinna Vinschen.
 2009-07-07 21:19:11 +10:00
Tim Rice
0d8f2f3afa - (tim) [contrib/cygwin/ssh-host-config] Whitespace cleanup. No code changes. 2009-01-29 12:40:30 -08:00
Tim Rice
6a32534968 - (tim) [contrib/cygwin/ssh-host-config] Patch from Corinna Vinschen. 
If the CYGWIN environment variable is empty, the installer script
   should not install the service with an empty CYGWIN variable, but
   rather without setting CYGWNI entirely.
 2009-01-29 12:30:01 -08:00
Tim Rice
ca3692d1a9 - (tim) [contrib/cygwin/ssh-host-config] Patch from Corinna Vinschen. 
Changes to work on Cygwin 1.5.x as well as on the new Cygwin 1.7.x.
   The information given for the setting of the CYGWIN environment variable
   is wrong for both releases so I just removed it, together with the
   unnecessary (Cygwin 1.5.x) or wrong (Cygwin 1.7.x) default setting.
 2009-01-28 12:50:04 -08:00
Darren Tucker
83795d61d2 - (dtucker) [contrib/cygwin/{Makefile,ssh-host-config}] Add new doc files 
and tweak the is-sshd-running check in ssh-host-config.  Patch from
   vinschen at redhat com.
 2008-12-01 21:34:28 +11:00
Damien Miller
1fc231cbb5 - (djm) [contrib/cygwin/Makefile contrib/cygwin/ssh-host-config] 
[contrib/cygwin/ssh-user-config contrib/cygwin/sshd-inetd]
   Revamped and simplified Cygwin ssh-host-config script that uses
   unified csih configuration tool. Requires recent Cygwin.
   Patch from vinschen AT redhat.com
 2008-07-14 12:12:52 +10:00
Tim Rice
401a27a307 [contrib/cygwin/ssh-host-config] 
Grammar changes on SYSCONFDIR LOCALSTATEDIR messages.
Check more thoroughly that it's possible to create the /var/empty directory.
Patch by vinschen AT redhat.com
 2008-02-23 14:47:37 -08:00
Darren Tucker
288cbbd59e - (dtucker) [contrib/cygwin/ssh-host-config] Add SeTcbPrivilege privilege 
while setting up the ssh service account.  Patch from Corinna Vinschen.
 2006-08-31 11:28:49 +10:00
Darren Tucker
18614c254d - (dtucker) [contrib/cygwin/ssh-host-config] Require use of lastlog as a 
file rather than directory, required as Cygwin will be importing lastlog(1).
   Also tightens up permissions on the file.  Patch from vinschen@redhat.com.
 2006-03-04 08:50:31 +11:00
Darren Tucker
e78c6ce8cf - (dtucker) [contrib/cygwin/ssh-host-config] Make sshd service depend on 
tcpip service so it's always started after IP is up.  Patch from
   vinschen at redhat.com.
 2006-01-10 00:02:44 +11:00
Darren Tucker
fa2211d93d - (dtucker) [contrib/cygwin/ssh-host-config] Add a test and warning for a 
user-mode mounts in Cygwin installation.  Patch from vinschen at redhat.com.
 2005-05-09 23:48:17 +10:00
Darren Tucker
a21380b70e - (dtucker) [contrib/cygwin/ssh-host-config] Makes the query for the 
localized name of the local administrators group more reliable.  From
   vinschen at redhat.com.
 2005-03-13 21:20:18 +11:00
Darren Tucker
5d596139d4 - (dtucker) [contrib/cygwin/ssh-host-config] Update to match current Cygwin 
install process.  Patch from vinschen at redhat.com.
 2004-09-21 21:35:55 +10:00
Damien Miller
a8e06cef35 - djm@cvs.openbsd.org 2003/11/21 11:57:03 
[everything]
     unexpand and delete whitespace at EOL; ok markus@
     (done locally and RCS IDs synced)
 2003-11-21 23:48:55 +11:00
Darren Tucker
798ca84d60 - (dtucker) [README ssh-host-config ssh-user-config Makefile] (All 
contrib/cygwin).  Major update from vinschen at redhat.com.
   - Makefile provides a `cygwin-postinstall' target to run right after
     `make install'.
   - Better support for Windows 2003 Server.
   - Try to get permissions as correct as possible.
   - New command line options to allow full automated host configuration.
   - Create configs from skeletons in /etc/defaults/etc.
   - Use /bin/bash, allows reading user input with readline support.
   - Remove really old configs from /usr/local.
 2003-11-13 11:28:49 +11:00
Darren Tucker
7c582db74b - (dtucker) [contrib/cygwin/ssh-host-config] Ensure entries in /etc/services 
are created correctly with CRLF line terminations.  Patch from vinschen at
   redhat.com.
 2003-11-03 18:59:29 +11:00
Darren Tucker
8daf4b45ea - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config] Update 
ssh-host-config to match current defaults, bump README version.  Patch from
   vinschen at redhat.com.
 2003-09-22 12:32:00 +10:00
Ben Lindstrom
224313cdae - (bal) Update ssh-host-config and minor rewrite of bsd-cygwin_util.c 
ntsec now default if cygwin version beginning w/ version 56.  Patch
   by Corinna Vinschen <vinschen@redhat.com>
 2002-11-09 15:59:27 +00:00
Tim Rice
6827395b07 [contrib/cygwin/ssh-host-config] explicitely sets the permissions 
on /var/empty to 755	Patch by vinschen@redhat.com
 2002-07-10 07:40:11 -07:00
Tim Rice
e475a3cf3b [contrib/cygwin/ssh-host-config] sshd account creation fixes 
patch from vinschen@redhat.com
 2002-07-07 14:07:46 -07:00
Tim Rice
b66e292912 [contrib/cygwin/ssh-host-config] double slash corrction 
from vinschen@redhat.com
 2002-07-05 16:22:32 -07:00
Ben Lindstrom
6dbf3001ec - (bal) Updated contrib/cygwin/ patch by vinschen@redhat.com 2002-07-03 23:33:19 +00:00
Ben Lindstrom
c42f7cfd16 - (bal) Mistaken in Cygwin scripts for ssh starting. Patch by 
Corinna Vinschen <vinschen@redhat.com>
 2002-04-12 17:44:13 +00:00
Damien Miller
aba690c100 - (djm) Cygwin config patch from Corinna Vinschen <vinschen@redhat.com> 2001-11-12 10:36:21 +11:00
Ben Lindstrom
a5820295c3 *** empty log message *** 2001-07-18 16:25:41 +00:00
Damien Miller
8ac0a7ec44 - Cygwin contrib improvements from Corinna Vinschen <vinschen@redhat.com> 2001-03-07 21:38:19 +11:00
Ben Lindstrom
b100ec9542 - (bal) Updated contrib/cygwin/ by Corinna Vinschen <vinschen@redhat.com> 
Also removed some of the 'ISSUES' comments that have been verified by djm.
 2001-01-19 05:37:32 +00:00