[Openvas-commits] r3160 - in trunk/winslad: . sshwindows

[scm-commit@wald.intevation.org]

Author: doj
Date: 2009-04-23 01:37:21 +0200 (Thu, 23 Apr 2009)
New Revision: 3160

Added:
   trunk/winslad/shell.bat
   trunk/winslad/sshwindows/
   trunk/winslad/sshwindows/banner.txt
   trunk/winslad/sshwindows/passwd
   trunk/winslad/sshwindows/sshd_config
Modified:
   trunk/winslad/Makefile
   trunk/winslad/TODO.txt
Log:
some eval results from sshwindows

Modified: trunk/winslad/Makefile
===================================================================
--- trunk/winslad/Makefile	2009-04-22 22:18:39 UTC (rev 3159)
+++ trunk/winslad/Makefile	2009-04-22 23:37:21 UTC (rev 3160)
@@ -22,6 +22,7 @@
 	-$(MKDIR) $(PREFIX)
 	$(CP) $(EXE) $(PREFIX)
 	$(CP) shell.vbs $(PREFIX)
+	$(CP) shell.bat $(PREFIX)
 	$(MAKE) -C john $@
 	$(MAKE) -C oval $@
 

Modified: trunk/winslad/TODO.txt
===================================================================
--- trunk/winslad/TODO.txt	2009-04-22 22:18:39 UTC (rev 3159)
+++ trunk/winslad/TODO.txt	2009-04-22 23:37:21 UTC (rev 3160)
@@ -11,8 +11,11 @@
 - write installer, run as slad user
  + create slad user and password
  + create c:\winslad and files
- + optionally install FreeSSHD
-  ~ install patched freesshd.ini which authorizes slad user and uses restricted shell
+ + optionally install sshwindows
+  ~ create group
+  ~ create passwd for slad user
+  ~ replace banner.txt, sshd_config
+  ~ set c:\winslad as home path for slad user in passwd, set c:\winslad\shell.bat as shell for slad user in passwd
 
 - cross compile
  + http://www.profv.de/mingw_cross_env/

Added: trunk/winslad/shell.bat
===================================================================
--- trunk/winslad/shell.bat	2009-04-22 22:18:39 UTC (rev 3159)
+++ trunk/winslad/shell.bat	2009-04-22 23:37:21 UTC (rev 3160)
@@ -0,0 +1 @@
+ at C:\windows\system32\cscript.exe /nologo c:\winslad\shell.vbs


Property changes on: trunk/winslad/shell.bat
___________________________________________________________________
Name: svn:executable
   + *

Added: trunk/winslad/sshwindows/banner.txt
===================================================================
--- trunk/winslad/sshwindows/banner.txt	2009-04-22 22:18:39 UTC (rev 3159)
+++ trunk/winslad/sshwindows/banner.txt	2009-04-22 23:37:21 UTC (rev 3160)
@@ -0,0 +1,2 @@
+This service can only be used by WinSLAD.
+


Property changes on: trunk/winslad/sshwindows/banner.txt
___________________________________________________________________
Name: svn:executable
   + *

Added: trunk/winslad/sshwindows/passwd
===================================================================
--- trunk/winslad/sshwindows/passwd	2009-04-22 22:18:39 UTC (rev 3159)
+++ trunk/winslad/sshwindows/passwd	2009-04-22 23:37:21 UTC (rev 3160)
@@ -0,0 +1 @@
+doj:unused_by_nt/2000/xp:1004:513:doj,U-VMWARE\doj,S-1-5-21-1390067357-1383384898-839522115-1004:/cygdrive/c/winslad:/cygdrive/c/winslad/shell.bat


Property changes on: trunk/winslad/sshwindows/passwd
___________________________________________________________________
Name: svn:executable
   + *

Added: trunk/winslad/sshwindows/sshd_config
===================================================================
--- trunk/winslad/sshwindows/sshd_config	2009-04-22 22:18:39 UTC (rev 3159)
+++ trunk/winslad/sshwindows/sshd_config	2009-04-22 23:37:21 UTC (rev 3160)
@@ -0,0 +1,101 @@
+# sshwindows configuration file used by WinSLAD
+
+# This is the sshd server system-wide configuration file.  See
+# sshd_config(5) for more information.
+
+# This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
+
+# The strategy used for options in the default sshd_config shipped with
+# OpenSSH is to specify options with their default value where
+# possible, but leave them commented.  Uncommented options change a
+# default value.
+
+#Port 22
+#Protocol 2,1
+Protocol 2
+#ListenAddress 0.0.0.0
+#ListenAddress ::
+
+# HostKey for protocol version 1
+#HostKey /etc/ssh/ssh_host_key
+# HostKeys for protocol version 2
+#HostKey /etc/ssh/ssh_host_rsa_key
+#HostKey /etc/ssh/ssh_host_dsa_key
+
+# Lifetime and size of ephemeral version 1 server key
+#KeyRegenerationInterval 1h
+#ServerKeyBits 768
+
+# Logging
+#obsoletes QuietMode and FascistLogging
+#SyslogFacility AUTH
+#LogLevel INFO
+
+# Authentication:
+
+#LoginGraceTime 2m
+PermitRootLogin no
+
+# The following setting overrides permission checks on host key files
+# and directories. For security reasons set this to "yes" when running
+# NT/W2K, NTFS and CYGWIN=ntsec.
+StrictModes no
+
+RSAAuthentication yes
+PubkeyAuthentication yes
+AuthorizedKeysFile	.ssh/authorized_keys
+
+# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
+#RhostsRSAAuthentication no
+# similar for protocol version 2
+#HostbasedAuthentication no
+# Change to yes if you don't trust ~/.ssh/known_hosts for
+# RhostsRSAAuthentication and HostbasedAuthentication
+IgnoreUserKnownHosts yes
+# Don't read the user's ~/.rhosts and ~/.shosts files
+#IgnoreRhosts yes
+
+# To disable tunneled clear text passwords, change to no here!
+PasswordAuthentication yes
+#PermitEmptyPasswords no
+
+# Change to no to disable s/key passwords
+#ChallengeResponseAuthentication yes
+
+# Kerberos options
+#KerberosAuthentication no
+#KerberosOrLocalPasswd yes
+#KerberosTicketCleanup yes
+
+# GSSAPI options
+#GSSAPIAuthentication no
+#GSSAPICleanupCreds yes
+
+# Set this to 'yes' to enable PAM authentication (via challenge-response)
+# and session processing. Depending on your PAM configuration, this may
+# bypass the setting of 'PasswordAuthentication'
+#UsePAM yes
+
+#AllowTcpForwarding yes
+#GatewayPorts no
+#X11Forwarding no
+#X11DisplayOffset 10
+#X11UseLocalhost yes
+#PrintMotd yes
+#PrintLastLog yes
+#KeepAlive yes
+#UseLogin no
+UsePrivilegeSeparation no
+#PermitUserEnvironment no
+#Compression yes
+#ClientAliveInterval 0
+#ClientAliveCountMax 3
+#UseDNS yes
+#PidFile /var/run/sshd.pid
+MaxStartups 10:30:60
+
+# default banner path
+Banner /etc/banner.txt
+
+# override default of no subsystems
+Subsystem	sftp	/usr/sbin/sftp-server


Property changes on: trunk/winslad/sshwindows/sshd_config
___________________________________________________________________
Name: svn:executable
   + *