Also, just wanted to respond to this one piece of the message to clarify - The only change I made to what ssh_host_config does is to use the existing domain admin account cyg_server rather than creating a new local admin account (and it actually detects it automatically if it exists already so this isn't even really doing anything different)
-----Original Message----- From: cygwin-ow...@cygwin.com [mailto:cygwin-ow...@cygwin.com] On Behalf Of Erik Soderquist Sent: Saturday, February 13, 2016 4:14 PM To: cygwin@cygwin.com Subject: Re: Possible Security Hole in SSHD w/ CYGWIN? > I don't know how you've arrived at the setup you just described, but > it's not the one that sshd_host_config produces. Yes, setting up an > SSHD wrongly can open up security holes, no surprise here. Once again, assumptions. While I can't explicitly vouch for David's environment, as I do not have access to check, I can vouch for mine, and mine was configured using sshd_host_config, with the only changes after sshd_host_config being regarding TCP and X tunneling. --- Erik -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple