This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Non-privileged use can't logon


Hi,

I'm raising this question again, after having removed CYGWIN SSHD and
resinstalled.

I am unable to execute an SSH <user>@localhost.  I am prompted for the
password and successfully logged on, only to receive an error message (see
below) and the session closed immediately.

Error Message:
1 [main] sshd 8284 C:\cygwin\usr\sbin\sshd.exe: *** fatal error - unable to
load C:\Windows\system32\userenv.dll, Win32 error 1114
Connection to localhost closed.

My Cygwin installation is on a Vista Home Premium (yes I know it's an old
OS), but the version I've been running for the past 3 years worked
perfectly.

The most interesting observation is that the logon works *if* I make the
user a member of the local Administrators group.

The Win32 1114 is a failure to initialise the dll.  The observed fact that
logging on with an administrator user account works, suggests that it is a
Windows privilege problem.  However, I would have thought that the privilege
should rest with the SSHD service account, cyg_server, which is an
Administrator and nothing to do with the user account trying to logon
through the SSH command.

Please remember that the old version I was running worked just fine.

I could work around using the account as a privileged account, but that's
not terribly desirable in this instance as the only intent of the SSHD
connection is to establish a tunnel for port redirection, so I'd prefer NOT
to expose a privileged account.

This is quite frustrating as I was simply trying to upgrade to the latest
(less vulnerable) SSHD daemon/service, from my 3-year old version.

I know one person on the forum has recently upgraded their SSHD on a Win8
machine and reported that they were able to ssh logon with an unprivileged
account.  So maybe it's a Vista backwards compatibility issue, but even then
I'm not convinced.

It might be constructive to understand what the default bash script is
trying to do that invokes a routine from userenv.dll.

I hope someone can help.


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]