11305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThis package describes important Cygwin specific stuff concerning OpenSSH. 21305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 31305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThe binary package is usually built for recent Cygwin versions and might 41305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodnot run on older versions. Please check http://cygwin.com/ for information 51305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodabout current Cygwin releases. 61305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 71305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodBuild instructions are at the end of the file. 81305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 91305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 101305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodImportant change since 3.7.1p2-2: 111305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 121305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThe ssh-host-config file doesn't create the /etc/ssh_config and 131305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood/etc/sshd_config files from builtin here-scripts anymore, but it uses 141305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodskeleton files installed in /etc/defaults/etc. 151305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 161305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodAlso it now tries hard to create appropriate permissions on files. 171305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodSame applies for ssh-user-config. 181305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 191305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodAfter creating the sshd service with ssh-host-config, it's advisable to 201305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodcall ssh-user-config for all affected users, also already exising user 211305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodconfigurations. In the latter case, file and directory permissions are 221305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodchecked and changed, if requireed to match the host configuration. 231305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 241305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodImportant note for Windows 2003 Server users: 251305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood--------------------------------------------- 261305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 271305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood2003 Server has a funny new feature. When starting services under SYSTEM 281305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodaccount, these services have nearly all user rights which SYSTEM holds... 291305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodexcept for the "Create a token object" right, which is needed to allow 301305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodpublic key authentication :-( 311305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 321305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThere's no way around this, except for creating a substitute account which 331305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodhas the appropriate privileges. Basically, this account should be member 341305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodof the administrators group, plus it should have the following user rights: 351305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 361305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood Create a token object 371305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood Logon as a service 381305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood Replace a process level token 391305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood Increase Quota 401305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 411305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThe ssh-host-config script asks you, if it should create such an account, 421305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodcalled "sshd_server". If you say "no" here, you're on your own. Please 431305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodfollow the instruction in ssh-host-config exactly if possible. Note that 441305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodssh-user-config sets the permissions on 2003 Server machines dependent of 451305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodwhether a sshd_server account exists or not. 461305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 471305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 481305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 491305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodImportant change since 3.4p1-2: 501305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 511305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThis version adds privilege separation as default setting, see 521305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood/usr/doc/openssh/README.privsep. According to that document the 531305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodprivsep feature requires a non-privileged account called 'sshd'. 541305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 551305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThe new ssh-host-config file which is part of this version asks 561305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodto create 'sshd' as local user if you want to use privilege 571305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodseparation. If you confirm, it creates that NT user and adds 581305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodthe necessary entry to /etc/passwd. 591305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 601305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodOn 9x/Me systems the script just sets UsePrivilegeSeparation to "no" 611305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodsince that feature doesn't make any sense on a system which doesn't 621305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwooddiffer between privileged and unprivileged users. 631305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 641305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThe new ssh-host-config script also adds the /var/empty directory 651305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodneeded by privilege separation. When creating the /var/empty directory 661305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodby yourself, please note that in contrast to the README.privsep document 671305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodthe owner sshould not be "root" but the user which is running sshd. So, 681305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodin the standard configuration this is SYSTEM. The ssh-host-config script 691305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodchowns /var/empty accordingly. 701305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 711305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 721305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 731305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodImportant change since 3.0.1p1-2: 741305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 751305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThis version introduces the ability to register sshd as service on 761305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodWindows 9x/Me systems. This is done only when the options -D and/or 771305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood-d are not given. 781305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 791305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 801305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 811305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodImportant change since 2.9p2: 821305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 831305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodSince Cygwin is able to switch user context without password beginning 841305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodwith version 1.3.2, OpenSSH now allows to do so when it's running under 851305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwooda version >= 1.3.2. Keep in mind that `ntsec' has to be activated to 861305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodallow that feature. 871305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 881305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 891305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 901305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodImportant change since 2.3.0p1: 911305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 921305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodWhen using `ntea' or `ntsec' you now have to care for the ownership 931305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodand permission bits of your host key files and your private key files. 941305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThe host key files have to be owned by the NT account which starts 951305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodsshd. The user key files have to be owned by the user. The permission 961305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodbits of the private key files (host and user) have to be at least 971305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodrw------- (0600)! 981305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 991305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodNote that this is forced under `ntsec' only if the files are on a NTFS 1001305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodfilesystem (which is recommended) due to the lack of any basic security 1011305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodfeatures of the FAT/FAT32 filesystems. 1021305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood=========================================================================== 1031305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1041305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you are installing OpenSSH the first time, you can generate global config 1051305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodfiles and server keys by running 1061305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1071305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood /usr/bin/ssh-host-config 1081305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1091305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodNote that this binary archive doesn't contain default config files in /etc. 1101305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodThat files are only created if ssh-host-config is started. 1111305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1121305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you are updating your installation you may run the above ssh-host-config 1131305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodas well to move your configuration files to the new location and to 1141305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwooderase the files at the old location. 1151305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1161305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodTo support testing and unattended installation ssh-host-config got 1171305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodsome options: 1181305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1191305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodusage: ssh-host-config [OPTION]... 1201305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodOptions: 1211305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --debug -d Enable shell's debug output. 1221305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --yes -y Answer all questions with "yes" automatically. 1231305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --no -n Answer all questions with "no" automatically. 1241305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --cygwin -c <options> Use "options" as value for CYGWIN environment var. 1251305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --port -p <n> sshd listens on port n. 1261305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --pwd -w <passwd> Use "pwd" as password for user 'sshd_server'. 1271305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1281305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodAdditionally ssh-host-config now asks if it should install sshd as a 1291305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodservice when running under NT/W2K. This requires cygrunsrv installed. 1301305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1311305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodYou can create the private and public keys for a user now by running 1321305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1331305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood /usr/bin/ssh-user-config 1341305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1351305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodunder the users account. 1361305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1371305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodTo support testing and unattended installation ssh-user-config got 1381305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodsome options as well: 1391305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1401305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodusage: ssh-user-config [OPTION]... 1411305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodOptions: 1421305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --debug -d Enable shell's debug output. 1431305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --yes -y Answer all questions with "yes" automatically. 1441305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --no -n Answer all questions with "no" automatically. 1451305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --passphrase -p word Use "word" as passphrase automatically. 1461305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1471305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodInstall sshd as daemon via cygrunsrv.exe (recommended on NT/W2K), via inetd 1481305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood(results in very slow deamon startup!) or from the command line (recommended 1491305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodon 9X/ME). 1501305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1511305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you start sshd as deamon via cygrunsrv.exe you MUST give the 1521305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood"-D" option to sshd. Otherwise the service can't get started at all. 1531305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1541305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf starting via inetd, copy sshd to eg. /usr/sbin/in.sshd and add the 1551305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodfollowing line to your inetd.conf file: 1561305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1571305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodssh stream tcp nowait root /usr/sbin/in.sshd sshd -i 1581305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1591305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodMoreover you'll have to add the following line to your 1601305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood${SYSTEMROOT}/system32/drivers/etc/services file: 1611305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1621305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood ssh 22/tcp #SSH daemon 1631305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1641305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodPlease note that OpenSSH does never use the value of $HOME to 1651305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodsearch for the users configuration files! It always uses the 1661305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodvalue of the pw_dir field in /etc/passwd as the home directory. 1671305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf no home diretory is set in /etc/passwd, the root directory 1681305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodis used instead! 1691305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1701305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodYou may use all features of the CYGWIN=ntsec setting the same 1711305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodway as they are used by Cygwin's login(1) port: 1721305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1731305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood The pw_gecos field may contain an additional field, that begins 1741305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood with (upper case!) "U-", followed by the domain and the username 1751305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood separated by a backslash. 1761305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood CAUTION: The SID _must_ remain the _last_ field in pw_gecos! 1771305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood BTW: The field separator in pw_gecos is the comma. 1781305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood The username in pw_name itself may be any nice name: 1791305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1801305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood domuser::1104:513:John Doe,U-domain\user,S-1-5-21-... 1811305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1821305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood Now you may use `domuser' as your login name with telnet! 1831305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood This is possible additionally for local users, if you don't like 1841305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood your NT login name ;-) You only have to leave out the domain: 1851305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1861305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood locuser::1104:513:John Doe,U-user,S-1-5-21-... 1871305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1881305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodNote that the CYGWIN=ntsec setting is required for public key authentication. 1891305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1901305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodSSH2 server and user keys are generated by the `ssh-*-config' scripts 1911305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodas well. 1921305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1931305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you want to build from source, the following options to 1941305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodconfigure are used for the Cygwin binary distribution: 1951305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 1961305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --prefix=/usr \ 1971305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --sysconfdir=/etc \ 1981305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --libexecdir='${sbindir}' \ 1991305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --localstatedir=/var \ 2001305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --datadir='${prefix}/share' \ 2011305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --mandir='${datadir}/man' \ 2021305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --infodir='${datadir}/info' 2031305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --with-tcp-wrappers 2041305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood --with-libedit 2051305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2061305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you want to create a Cygwin package, equivalent to the one 2071305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwoodin the Cygwin binary distribution, install like this: 2081305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2091305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood mkdir /tmp/cygwin-ssh 2101305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood cd ${builddir} 2111305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood make install DESTDIR=/tmp/cygwin-ssh 2121305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood cd ${srcdir}/contrib/cygwin 2131305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood make cygwin-postinstall DESTDIR=/tmp/cygwin-ssh 2141305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood cd /tmp/cygwin-ssh 2151305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood find * \! -type d | tar cvjfT my-openssh.tar.bz2 - 2161305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2171305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodYou must have installed the following packages to be able to build OpenSSH: 2181305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2191305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood- zlib 2201305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood- openssl-devel 2211305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2221305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you want to build with --with-tcp-wrappers, you also need the package 2231305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2241305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood- tcp_wrappers 2251305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2261305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodIf you want to build with --with-libedit, you also need the package 2271305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2281305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood- libedit-devel 2291305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2301305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodPlease send requests, error reports etc. to cygwin@cygwin.com. 2311305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2321305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2331305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodHave fun, 2341305e95ba6ff9fa202d0818caf10405df4b0f648Mike Lockwood 2351305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodCorinna Vinschen 2361305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodCygwin Developer 2371305e95ba6ff9fa202d0818caf10405df4b0f648Mike LockwoodRed Hat Inc. 238