Line 77: |
Line 77: |
| | | |
| ===== On Windows Server 2003 ===== | | ===== On Windows Server 2003 ===== |
− | {{Incomplete}}
| + | Chosse a random string for the password. You'll never need it again. |
− | . | + | Generating /etc/ssh_host_key |
| + | Generating /etc/ssh_host_rsa_key |
| + | Generating /etc/ssh_host_dsa_key |
| + | Generating /etc/ssh_config file |
| + | Privilege separation is set to yes by default since OpenSSH 3.3. |
| + | However, this requires a non-privileged account called 'sshd'. |
| + | For more info on privilege separation read /usr/share/doc/openssh/README.privsep. |
| + | |
| + | Should privilege separation be used? (yes/no) '''yes''' |
| + | Warning: The following function requires administrator privileges! |
| + | Should this script create a local user 'sshd' on this machine? (yes/no) '''yes''' |
| + | Generating /etc/sshd_config file |
| + | |
| + | Warning: The following functions require administrator privileges! |
| + | |
| + | Do you want to install sshd as service? |
| + | (Say "no" if it's already installed as service) (yes/no) '''yes''' |
| + | |
| + | You appear to be running Windows 2003 Server or later. On 2003 and |
| + | later systems, it's not possible to use the LocalSystem account |
| + | if sshd should allow passwordless logon (e. g. public key authentication). |
| + | If you want to enable that functionality, it's required to create a new |
| + | account 'sshd_server' with special privileges, which is then used to run |
| + | the sshd service under. |
| + | |
| + | Should this script create a new local account 'sshd_server' which has |
| + | the required privileges? (yes/no) '''yes''' |
| + | |
| + | Please enter a password for new user 'sshd_server'. Please be sure that |
| + | this password matches the password rules given on your system. |
| + | Entering no password will exit the configuration. PASSWORD='''Xesp348RfnMes''' |
| + | |
| + | User 'sshd_server' has been created with password 'Xesp348RfnMes'. |
| + | If you change the password, please keep in mind to change the password |
| + | for the sshd service, too. |
| + | |
| + | Also keep in mind that the user sshd_server needs read permissions on all |
| + | users' .ssh/authorized_keys file to allow public key authentication for |
| + | these users!. (Re-)running ssh-user-config for each user will set the |
| + | required permissions correctly. |
| + | |
| + | |
| + | Which value should the environment variable CYGWIN have when |
| + | sshd starts? It's recommended to set at least "ntsec" to be |
| + | able to change user context without password. |
| + | Default is "ntsec". CYGWIN='''ntsec''' |
| + | |
| + | The service has been installed under sshd_server account. |
| + | To start the service, call `net start sshd' or `cygrunsrv -S sshd'. |
| + | |
| + | Host configuration finished. Have fun! |
| | | |
| ===== On Windows Server 2000 ===== | | ===== On Windows Server 2000 ===== |