Well I think Cyg­win is a great tool, BUT the instal­la­tion is really.. ermm.. let’s say ugly. That’s why we cre­ated a small zip file (2mb), which con­tains all the files you need to run a Cyg­win SSH server. We cre­ated a small script, which will set up your sshd.

Be sure to edit the _install.cmd file first and enter the cor­rect path (where to install the ssh server) and enter a pass­word for the SSHD ser­vice which matches the pass­word rules given on your sys­tem. Also note that this is NOT a high secu­rity instal­la­tion, check the secu­rity set­tings your­self. And you need to edit the passwd file after the instal­la­tion, to enter a cor­rect shell (use usershell.cmd as an exam­ple) — bash is not included (and bash is in the passwd file as default)!

down­load neophob’s cyg­win sshd package

Here is the install script::## the install direc­tory
set INSTALL-DIR=c:ssh

:## the install direc­tory, yes the same as above, except you need to use dou­ble back­slash (\), its for the .reg file we gen­er­ate
set REGINSTALL-DIR=c:\ssh

:## the pass­word of the sshd ser­vice
set SSHDUSER-PASSWORD=pa$$word

:## used for instal­la­tion, nor­mally you dont need to change that!
set REGFILE=%INSTALL-DIR%cygmount.reg

@echo.
@echo ———————————————————————–
@echo CAUTION! READ THIS FIRST (READ IT REALLY!) — dont blame me if you dont!
@echo ———————————————————————–
@echo.
@echo this script will install cyg­win ssh server (or sshd). this script will:
@echo  –cre­ate a local user called sshd_server
@echo  –cre­ate a ser­vice called sshd­NEO (dis­play name: CYGWIN sshd NEOPHOB.COM)
@echo.
@echo be sure that:
@echo  –you are logged in as a admin­is­tra­tor
@echo  –you didnt all­ready use cyg­win — else your instal­la­tion will be unus­able!
@echo  –this machine is not a domain con­troller — this will not work
@echo                                             (dc’s dont have local user’s)
@echo  –this is just a quick hack, check the secu­rity set­ting on your own!
@echo  –you edited or reviewed the first lines of this script (install direc­to­ries)
@echo  –you know what you’re doing.
@echo.
@echo Com­ments or hints to: admin@neophob.com — http://www.neophob.com
@echo.
@echo.
@echo Press Ctrl + C to abort now.
@echo.
pause
echo REGEDIT4 > %REGFILE%
echo [HKEY_LOCAL_MACHINESOFTWARECygnus Solu­tion­sCyg­win­mounts v2]» %REGFILE%
echo “cyg­drive prefix”=”/cygdrive”» %REGFILE%
echo “cyg­drive flags”=dword:00000022» %REGFILE%
echo [HKEY_LOCAL_MACHINESOFTWARECygnus Solu­tion­sCyg­win­mounts v2/]» %REGFILE%
echo “native”=”%REGINSTALL-DIR%”» %REGFILE%
echo “flags”=dword:0000000a» %REGFILE%

regedit %REGFILE%

echo # gen­er­ate ssh keys…
ssh-keygen –t rsa1 –f .etcssh_host_key –N ”
ssh-keygen –t rsa –f .etcssh_host_rsa_key –N ”
ssh-keygen –t dsa –f .etcssh_host_dsa_key –N ”

echo # add local user sshd_server…
net user sshd_server %SSHDUSER-PASSWORD% /add /fullname:“sshd server account” /EXPIRES:NEVER /yes

echo # add sshd_server user to admin group…
net local­group Admin­is­tra­tors sshd_server /add

echo # gen­er­ate passwd file from local users…
mkpasswd.exe –l » .etcpasswd

echo # grant sshd_server account user rights…
editrights –a SeAssign­Pri­ma­ry­To­ken­Priv­i­lege –u sshd_server
editrights –a SeCre­ate­To­ken­Priv­i­lege –u sshd_server
editrights –a SeDeny­In­ter­ac­tiveL­o­gonRight –u sshd_server
editrights –a SeDenyNet­work­L­o­gonRight –u sshd_server
editrights –a SeDenyRe­moteIn­ter­ac­tiveL­o­gonRight –u sshd_server
editrights –a SeIn­crease­Quo­taPriv­i­lege –u sshd_server
editrights –a SeSer­viceL­o­gonRight –u sshd_server

echo # install ser­vice sshd­NEO
cygrun­srv –I sshd­NEO –d “CYGWIN sshd NEOPHOB.COM” –p /sshd –a –D –u sshd_server –w %SSHDUSER-PASSWORD% –e “CYGWIN=ntsec”

echo # fix some secu­rity set­tings…
chown sshd_server /etc/ssh*
chown sshd_server /var/log/empty
chown sshd_server /var/log/ssh*.log
chmod 700 /etc/ssh*
chmod 770 /var/log/*

echo # in the file /etc/passwd, change the line from:
echo “# Administrator:..<skipped>..:/home/Administrator:/bin/bash“
echo # to:
echo “# Administrator:..<skipped>..:/home/Administrator:/usershell.cmd”

notepad %INSTALL-DIR%etcpasswd

Windows SSH Server, Cygwin mini installation

3 Comments

  • 1 mystic wrote:

    Im hav­ing the issue noted @ the fol­low­ing link. Any idea on how to fix it?

    http://msgs.securepoint.com/cgi-bin/get/openssh-unix-dev-0607/8.html

    –Thanks

    July 20, 2006 at 15:49 Permalink

  • 2 Corinna Vinschen wrote:

    Hi,

    your min­i­mal ssh pack­age offer vio­lates the GPL, because you don’t
    offer the source codes as well. Please note that it’s not suf­fi­cient
    to post the URL to http://cygwin.com, you have to pro­vide the source
    your­self, and the sources must pro­vide the exact same releases as
    have been used to cre­ate the binary pack­age from.

    AFAICS from the pack­age, you should pre­pare a source pack­age
    con­tain the match­ing releases of

    - Cyg­win
    – editrights
    – core­utils
    – libi­conv
    – get­text
    – minires
    – zlib

    Pro­vid­ing the sources for the fol­low­ing pack­ages is not nec­es­sary
    since they aren’t licensed under the GPL, but it would be nice to
    do it nev­er­the­less as a cour­tesy to the users:

    - OpenSSH
    – OpenSSL

    Btw., the instal­la­tion using Cygwin’s setup.exe and run­ning the
    ssh-host-config script after­wards looks much eas­ier to me, but
    per­haps I’m just biased.

    Thanks,
    Corinna Vin­schen
    Cyg­win Project Co-Leader

    June 9, 2009 at 09:58 Permalink

  • 3 Thomas wrote:

    Hi,

    I really like this pack­age, but what is the user­name to user for the ssh connection?

    Best regards Thomas

    January 30, 2010 at 14:31 Permalink

Post a Comment

Your email is never published nor shared. Required fields are marked *

*
*