This is the mail archive of the cygwin@cygwin.com mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: Fwd: Re: cron and NT domains


On Wed, Jul 17, 2002 at 03:01:23PM -0400, Jason Tishler wrote:
> On Mon, Jul 15, 2002 at 10:59:33PM -0700, David MacMahon wrote:
> > This creates one "Information" event and one "Error" in Event Viewer.
> > The Information event says "Accepted publickey for dm2328 from
> > 10.10.10.41 port 32838 ssh2."  The Error event says "fatal: setuid
> > 6539: Permission denied."
> 
> I was getting the same Event Log entries as above when disconnected from
> my PDC.
> 
> See the following mailing list thread:
> 
>     http://cygwin.com/ml/cygwin-developers/2002-07/msg00084.html
> 
> It's just a WAG, but possibly Pierre's patch would help you out too?
> 
>     http://cygwin.com/ml/cygwin-developers/2002-07/msg00111.html

Thanks for the links.  They encouraged me to use strace to get some more
data about the behavior I am observing.  It turns out that I am getting
a different error than you were getting when disconnected from your PDC.

Are you running sshd under your domain account, your local account,
or the "SYSTEM" account?  To ask it another way, who owns the
/etc/ssh_host* files?

I am getting these three errors: 1308, 1300, and 1326.

Here is the relevant excerpt from my strace output (sorry for the
wrapping and any superfluous output)...

  174 16100698 [main] sshd 1544 setegid32: SetTokenInformation(process,
TokenPrimaryGroup): Win32 error 1308
  116 16100814 [main] sshd 1544 seteuid32: uid: 6539 myself->gid: 10513
  150 16100964 [main] sshd 1544 seteuid32: Process token not verified
 1197 16102161 [main] sshd 1544 set_process_privilege: Privilege
SeCreateTokenPrivilege couldn't be assigned
  190 16102351 [main] sshd 1544 seterrno_from_win_error:
/netrel/src/cygwin-1.3.12-2/winsup/cygwin/sec_helper.cc:383 windows
error 1300
  106 16102457 [main] sshd 1544 geterrno_from_win_error: unknown windows
error 1300, setting errno to 13
 7491 16102676 [select_pipe] sshd 1808 thread_pipe: stopping
  549 16103006 [main] sshd 1544 set_process_privilege: -1 =
set_process_privilege (SeCreateTokenPrivilege, 1)
  111 16103117 [main] sshd 1544 create_token: -1 = create_token ()
  105 16103222 [main] sshd 1544 seteuid32: create token failed, try
subauthentication.
 1296 16104518 [main] sshd 1544 set_process_privilege: 0 =
set_process_privilege (SeTcbPrivilege, 1)
  816 16105334 [main] sshd 1544 extract_nt_dom_user: pw_gecos = 100B176A
(David
+MacMahon,U-ITSERVICES\dm2328,S-1-5-21-2057499049-1289676208-1959431660-203147)
 3979 16106655 [main] sshd 1808 socket_cleanup: si 0x100CD4F0 si->thread
0x240
  195 16106850 [main] sshd 1808 socket_cleanup: connection to
si->exitsock 0x208
 5475 16112325 [main] sshd 1808 socket_cleanup: returning
  203 16112528 [main] sshd 1808 peek_socket: considering handle 0x1BC
  122 16112650 [main] sshd 1808 peek_socket: adding read fd_set
/dev/tcp, fd 4
  112 16112762 [main] sshd 1808 peek_socket: adding write fd_set
/dev/tcp, fd 4
  135 16112897 [main] sshd 1808 peek_socket: WINSOCK_SELECT returned 1
  527 16113424 [main] sshd 1808 set_bits: me 0x100B4A68, testing fd 4
(/dev/tcp)
  201 16113625 [main] sshd 1808 set_bits: ready 1
  148 16113773 [main] sshd 1808 select_stuff::poll: returning 1
  145 16113918 [main] sshd 1808 select_stuff::cleanup: calling cleanup
routines
  110 16114028 [main] sshd 1808 select_stuff::~select_stuff: deleting
select records
  439 16114467 [main] sshd 1808 set_process_mask: old mask = 0, new mask
= 80000
  113 16114580 [main] sshd 1808 set_process_mask: old mask = 80000, new
mask = 0
  123 16114703 [main] sshd 1808 _write: write (4, 0x100B6168, 160)
  110 16114813 [main] sshd 1808 fhandler_socket::send: Fallback to
winsock 1 send call
  411 16115224 [main] sshd 1808 _write: 160 = write (4, 0x100B6168, 160)
  161 16115385 [main] sshd 1808 cygwin_select: 10, 0x100BBAA0,
0x100B4BB0, 0x0, 0x0
  215 16115600 [main] sshd 1808 dtable::select_read: /dev/piper fd 3
  230 16115830 [main] sshd 1808 dtable::select_read: /dev/tcp fd 4
  747 16116577 [main] sshd 1808 dtable::select_read: /dev/ptym fd 9
  131 16116708 [main] sshd 1808 cygwin_select: to NULL, ms FFFFFFFF
  304 16117012 [main] sshd 1808 cygwin_select: sel.always_ready 0
 2135 16119147 [main] sshd 1808 start_thread_socket: Handle 0x1BC
  131 16119278 [main] sshd 1808 start_thread_socket: Added to readfds
  394 16119672 [main] sshd 1808 start_thread_socket: exitsock 0x208
  293 16119965 [main] sshd 1808 start_thread_socket: stuff_start
0x22F30C
  257 16120222 [main] sshd 1808 select_stuff::wait: m 3, ms 4294967295
  774 16120996 [select_socket] sshd 1808 thread_socket: stuff_start
0x100D0514
74765 16180099 [main] sshd 1544 subauth: LsaLogonUser: -1073741715
  235 16180334 [main] sshd 1544 seterrno_from_win_error:
/netrel/src/cygwin-1.3.12-2/winsup/cygwin/security.cc:969 windows error
1326
  109 16180443 [main] sshd 1544 geterrno_from_win_error: unknown windows
error 1326, setting errno to 13
 1246 16181689 [main] sshd 1544 set_process_privilege: 1 =
set_process_privilege (SeTcbPrivilege, 0)
  185 16181874 [main] sshd 1544 setuid32: real: 1002, effective: 1002

Dave

-- 
David MacMahon, President
Smart Software Consulting
http://www.smartsc.com

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]