Topics: |
How to: |
OpenSSH is a set of applications providing encrypted communication sessions over a computer network using the SSH protocol.
Note: No configuration is required during the installation.
The OpenSSH Server is installed under the following directory by default:
C:\Program Files\OpenSSH
C:\Program Files\OpenSSH
For local groups, use the -l switch. For domain groups, use the -d switch.
For both domain and local, it is best to run the command twice (remember to use >>, not >). If you use both, make sure to edit the file to remove any duplicate entries.
mkgroup -l >> ..\etc\group (local groups) mkgroup -d >> ..\etc\group (domain groups)
For local users, use the -l switch. For domain users, use the -d switch.
For both domain and local, it is best to run the command twice (remember to use >>, not >). If you use both, make sure to edit the file to remove any duplicate entries.
mkpasswd -l [-u <username>] >> ..\etc\passwd (local users) mkpasswd -d [-u <username>] >> ..\etc\passwd (domain users)
net start opensshd
Using a separate machine as the client is recommended. If you connect, but the connection is immediately dropped, then reboot the machine with the server and try to reconnect.
Note: The primary rule in using this utility is to only allow trusted users to have login permissions. The cygwin port of OpenSSH uses the full OpenSSH source code and the security of the program is not diluted.
/users/[myusername]
Check permissions on your ~/.ssh folder and make sure to enter the following command if they are wrong:
chmod 700 .ssh
ssh-keygen -t dsa
or
ssh-keygen -t rsa
mv id_dsa.pub authorized_keys
The id_dsa private key generated can be used to login without the password to the OpenSSH server.
privatekey.ppk
In the passwd file, you will notice that the home directory of the user is set as /home/username, with username being the name of the account. In the default install, the /home directory is set to the default profile directory for all users. This is usually C:\Documents and Settings on Windows 2000 and XP, and C:\WINNT\Profiles on Windows NT 4.0. The location of /home can be edited to fit your special requirements by editing a registry key.
To change the Windows directory /home corresponds to, you will need to edit a registry entry under HKEY_LOCAL_MACHINE\SOFTWARE\Cygnus Solutions\Cygwin\mounts v2\/home. The value of the key named native is the directory that /home is. If you want all your users to enter in a directory on your machine called F:\Users, change native to read F:\Users. By default, each user will then be placed in the directory F:\Users\username, where username is the name of the user account. To place the user directly under F:\Users, change the home directory password to /home.
The OpenSSH server listens for traffic on TCP port 22 by default. If your firewall setup does not allow connections on this port, it can be changed by editing the etc/sshd_config file.
Note: For additional troubleshooting and OpenSSH advanced configuration, refer to the readme.txt file, under C:\Program files\OpenSSH\docs.