Web lists-archives.com

Re: Failed password for invalid user




On Mar  3 10:03, jesus san miguel wrote:
> I am running cygwin 2.7.0 sshd service under a local cyg_server account.
> 
> I wanted to avoid case sensitive problems by duplicating users in
> /etc/passwd, but I find mixed results:
> I can login as "Administrator", "MYPC+Administrator" and "miabuela",
> but not as "administrator" despite all of them being the same Window
> user.
> 
> This is an excerpt of /etc/passwd:
> 
> $ cat /etc/passwd | grep 500
> SSFE009W2012+Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> miabuela:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> Administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> administrator:*:197108:197121:U-SSFE009W2012\Administrator,S-1-5-21-3863157116-1840367147-1613345037-500:/home/Administrator:/bin/bash
> 
> #Administrator@SSFE009W2012 /etc
> $ uname -a
> CYGWIN_NT-6.3-WOW SSFE009W2012 2.7.0(0.306/5/3) 2017-02-12 13:13 i686 Cygwin
> 
> The error I get in windows log is "Failed password for invalid user
> administrator"
> 
> 
> Thanks in advance,
> Jesus

OpenSSH checks the username case-sensitive!

So, depending on the order in /etc/passwd you can login either with
"Administrator" or with "administrator", whatever comes first and
matches the user account.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

Attachment: signature.asc
Description: PGP signature