tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,492 Commits 6 Branches 20 Tags 98 MiB
Commit Graph

46 Commits

Author SHA1 Message Date
Darren Tucker 825ab32f0d On Cygwin run sshd as SYSTEM where possible. 
Seteuid now creates user token using S4U.  We don't create a token
from scratch anymore, so we don't need the "Create a process token"
privilege.  The service can run under SYSTEM again...

...unless Cygwin is running on Windows Vista or Windows 7 in the
WOW64 32 bit emulation layer.  It turns out that WOW64 on these systems
didn't implement MsV1_0 S4U Logon so we still need the fallback
to NtCreateToken for these systems.

Signed-off-by: Corinna Vinschen <vinschen@redhat.com>
 2019-03-14 08:51:17 +11:00
Corinna Vinschen 1d05b4adcb Cygwin: only tweak sshd_config file if it's new, drop creating sshd user 
The sshd_config tweaks were executed even if the old file was
still in place.  Fix that.  Also disable sshd user creation.
It's not used on Cygwin.
 2019-01-28 09:57:58 +11:00
Corinna Vinschen 89843de0c4 Cygwin: Change service name to cygsshd 
Microsoft hijacked the sshd service name without asking.
 2019-01-28 09:57:58 +11:00
Darren Tucker f2970868f8 Improve warnings in cygwin service setup. 
bz#2922, patch from vinschen at redhat.com.
 2018-11-11 15:58:20 +11:00
Darren Tucker bd2d54fc1e Remove hardcoded service name in cygwin setup. 
bz#2922, patch from Christian.Lupien at USherbrooke.ca, sanity check
by vinschen at redhat.com.
 2018-11-11 15:54:54 +11:00
Damien Miller 10479cc2a4 Many typo fixes from Karsten Weiss 
Spotted using https://github.com/lucasdemarchi/codespell
 2018-04-10 10:19:02 +10:00
Damien Miller 55a1117d73 Adapt Cygwin config script to privsep knob removal 
Patch from Corinna Vinschen.
 2017-03-16 11:22:42 +11:00
Damien Miller 867f49c666 Avoid Cygwin ssh-host-config reading /etc/group 
Patch from Corinna Vinschen
 2014-11-26 13:22:41 +11:00
Damien Miller 8b66f36291 allow custom service name for sshd on Cygwin 
Permits the use of multiple sshd running with different service names.

Patch by Florian Friesdorf via Corinna Vinschen
 2014-11-26 13:20:35 +11:00
Damien Miller 0e4cff5f35 Prepare scripts for next Cygwin release 
Makes the Cygwin-specific ssh-user-config script independent of the
existence of /etc/passwd.  The next Cygwin release will allow to
generate passwd and group entries from the Windows account DBs, so the
scripts have to adapt.

from Corinna Vinschen
 2014-11-05 11:01:31 +11:00
Damien Miller 44988defb1 - (djm) [contrib/cygwin/ssh-host-config] Fix old code leading to 
permissions/ACLs; from Corinna Vinschen
 2014-09-03 05:35:32 +10:00
Damien Miller f9eb5e0734 - (djm) [contrib/cygwin/ssh-host-config] Updated Cygwin ssh-host-config 
from Corinna Vinschen, fixing a number of bugs and preparing for
   Cygwin 1.7.30.
 2014-05-27 14:31:58 +10:00
Darren Tucker aff7ef1bb8 - (dtucker) [contrib/cygwin/ssh-host-config] Simplify host key generation: 
rather than testing and generating each key, call ssh-keygen -A.
   Patch from vinschen at redhat.com.
 2013-11-09 00:19:22 +11:00
Darren Tucker b7482cff46 - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config 
contrib/cygwin/ssh-user-config] Modernizes and improve readability of
   the Cygwin README file (which hasn't been updated for ages), drop
   unsupported OSes from the ssh-host-config help text, and drop an
   unneeded option from ssh-user-config.  Patch from vinschen at redhat com.
 2013-07-02 20:06:46 +10:00
Darren Tucker 62dcd63f5e - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as 
can logon as a service.  Patch from vinschen at redhat com.
 2012-06-22 22:02:42 +10:00
Darren Tucker e541aaaf0f - (dtucker) [contrib/cygwin/ssh-host-config] From Corinna: revamp of the 
Cygwin-specific service installer script ssh-host-config.  The actual
   functionality is the same, the revisited version is just more
   exact when it comes to check for problems which disallow to run
   certain aspects of the script.  So, part of this script and the also
   rearranged service helper script library "csih" is to check if all
   the tools required to run the script are available on the system.
   The new script also is more thorough to inform the user why the
   script failed.  Patch from vinschen at redhat com.
 2011-02-21 21:41:29 +11:00
Darren Tucker ea676a6422 - (dtucker) [contrib/cygwin/ssh-{host,user}-config] Add ECDSA key 
generation and simplify.  Patch from Corinna Vinschen.
 2011-02-06 13:31:23 +11:00
Darren Tucker 62131dc6e2 - (dtucker) [contrib/cygwin/ssh-host-config] Mount the Windows directory 
containing the services file explicitely case-insensitive.  This allows to
   tweak the Windows services file reliably.  Patch from vinschen at redhat.
 2010-03-24 13:03:32 +11:00
Darren Tucker 8fdcba5caf - (dtucker [contrib/cygwin/ssh-{host,user}-config] Add license text. Patch 
from Corinna Vinschen.
 2009-07-12 21:58:42 +10:00
Darren Tucker 4d4fdc0f7d - (dtucker) [contrib/cygwin/ssh-host-config] better support for automated 
scripts and fix usage of eval.  Patch from Corinna Vinschen.
 2009-07-07 21:19:11 +10:00
Tim Rice 0d8f2f3afa - (tim) [contrib/cygwin/ssh-host-config] Whitespace cleanup. No code changes. 2009-01-29 12:40:30 -08:00
Tim Rice 6a32534968 - (tim) [contrib/cygwin/ssh-host-config] Patch from Corinna Vinschen. 
If the CYGWIN environment variable is empty, the installer script
   should not install the service with an empty CYGWIN variable, but
   rather without setting CYGWNI entirely.
 2009-01-29 12:30:01 -08:00
Tim Rice ca3692d1a9 - (tim) [contrib/cygwin/ssh-host-config] Patch from Corinna Vinschen. 
Changes to work on Cygwin 1.5.x as well as on the new Cygwin 1.7.x.
   The information given for the setting of the CYGWIN environment variable
   is wrong for both releases so I just removed it, together with the
   unnecessary (Cygwin 1.5.x) or wrong (Cygwin 1.7.x) default setting.
 2009-01-28 12:50:04 -08:00
Darren Tucker 83795d61d2 - (dtucker) [contrib/cygwin/{Makefile,ssh-host-config}] Add new doc files 
and tweak the is-sshd-running check in ssh-host-config.  Patch from
   vinschen at redhat com.
 2008-12-01 21:34:28 +11:00
Damien Miller 1fc231cbb5 - (djm) [contrib/cygwin/Makefile contrib/cygwin/ssh-host-config] 
[contrib/cygwin/ssh-user-config contrib/cygwin/sshd-inetd]
   Revamped and simplified Cygwin ssh-host-config script that uses
   unified csih configuration tool. Requires recent Cygwin.
   Patch from vinschen AT redhat.com
 2008-07-14 12:12:52 +10:00
Tim Rice 401a27a307 [contrib/cygwin/ssh-host-config] 
Grammar changes on SYSCONFDIR LOCALSTATEDIR messages.
Check more thoroughly that it's possible to create the /var/empty directory.
Patch by vinschen AT redhat.com
 2008-02-23 14:47:37 -08:00
Darren Tucker 288cbbd59e - (dtucker) [contrib/cygwin/ssh-host-config] Add SeTcbPrivilege privilege 
while setting up the ssh service account.  Patch from Corinna Vinschen.
 2006-08-31 11:28:49 +10:00
Darren Tucker 18614c254d - (dtucker) [contrib/cygwin/ssh-host-config] Require use of lastlog as a 
file rather than directory, required as Cygwin will be importing lastlog(1).
   Also tightens up permissions on the file.  Patch from vinschen@redhat.com.
 2006-03-04 08:50:31 +11:00
Darren Tucker e78c6ce8cf - (dtucker) [contrib/cygwin/ssh-host-config] Make sshd service depend on 
tcpip service so it's always started after IP is up.  Patch from
   vinschen at redhat.com.
 2006-01-10 00:02:44 +11:00
Darren Tucker fa2211d93d - (dtucker) [contrib/cygwin/ssh-host-config] Add a test and warning for a 
user-mode mounts in Cygwin installation.  Patch from vinschen at redhat.com.
 2005-05-09 23:48:17 +10:00
Darren Tucker a21380b70e - (dtucker) [contrib/cygwin/ssh-host-config] Makes the query for the 
localized name of the local administrators group more reliable.  From
   vinschen at redhat.com.
 2005-03-13 21:20:18 +11:00
Darren Tucker 5d596139d4 - (dtucker) [contrib/cygwin/ssh-host-config] Update to match current Cygwin 
install process.  Patch from vinschen at redhat.com.
 2004-09-21 21:35:55 +10:00
Damien Miller a8e06cef35 - djm@cvs.openbsd.org 2003/11/21 11:57:03 
[everything]
     unexpand and delete whitespace at EOL; ok markus@
     (done locally and RCS IDs synced)
 2003-11-21 23:48:55 +11:00
Darren Tucker 798ca84d60 - (dtucker) [README ssh-host-config ssh-user-config Makefile] (All 
contrib/cygwin).  Major update from vinschen at redhat.com.
   - Makefile provides a `cygwin-postinstall' target to run right after
     `make install'.
   - Better support for Windows 2003 Server.
   - Try to get permissions as correct as possible.
   - New command line options to allow full automated host configuration.
   - Create configs from skeletons in /etc/defaults/etc.
   - Use /bin/bash, allows reading user input with readline support.
   - Remove really old configs from /usr/local.
 2003-11-13 11:28:49 +11:00
Darren Tucker 7c582db74b - (dtucker) [contrib/cygwin/ssh-host-config] Ensure entries in /etc/services 
are created correctly with CRLF line terminations.  Patch from vinschen at
   redhat.com.
 2003-11-03 18:59:29 +11:00
Darren Tucker 8daf4b45ea - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config] Update 
ssh-host-config to match current defaults, bump README version.  Patch from
   vinschen at redhat.com.
 2003-09-22 12:32:00 +10:00
Ben Lindstrom 224313cdae - (bal) Update ssh-host-config and minor rewrite of bsd-cygwin_util.c 
ntsec now default if cygwin version beginning w/ version 56.  Patch
   by Corinna Vinschen <vinschen@redhat.com>
 2002-11-09 15:59:27 +00:00
Tim Rice 6827395b07 [contrib/cygwin/ssh-host-config] explicitely sets the permissions 
on /var/empty to 755	Patch by vinschen@redhat.com
 2002-07-10 07:40:11 -07:00
Tim Rice e475a3cf3b [contrib/cygwin/ssh-host-config] sshd account creation fixes 
patch from vinschen@redhat.com
 2002-07-07 14:07:46 -07:00
Tim Rice b66e292912 [contrib/cygwin/ssh-host-config] double slash corrction 
from vinschen@redhat.com
 2002-07-05 16:22:32 -07:00
Ben Lindstrom 6dbf3001ec - (bal) Updated contrib/cygwin/ patch by vinschen@redhat.com 2002-07-03 23:33:19 +00:00
Ben Lindstrom c42f7cfd16 - (bal) Mistaken in Cygwin scripts for ssh starting. Patch by 
Corinna Vinschen <vinschen@redhat.com>
 2002-04-12 17:44:13 +00:00
Damien Miller aba690c100 - (djm) Cygwin config patch from Corinna Vinschen <vinschen@redhat.com> 2001-11-12 10:36:21 +11:00
Ben Lindstrom a5820295c3 *** empty log message *** 2001-07-18 16:25:41 +00:00
Damien Miller 8ac0a7ec44 - Cygwin contrib improvements from Corinna Vinschen <vinschen@redhat.com> 2001-03-07 21:38:19 +11:00
Ben Lindstrom b100ec9542 - (bal) Updated contrib/cygwin/ by Corinna Vinschen <vinschen@redhat.com> 
Also removed some of the 'ISSUES' comments that have been verified by djm.
 2001-01-19 05:37:32 +00:00