SSH Secure Services on Windows 2K/XP?

jstockdale asks: "Lately I've been working on the security of the few Windows boxes I administer, specifically XP and 2000 stations. I havn't had much of a problem finding decent solutions for file/email/disk encryption (besides the fact that PGP is no longer selling their products), or for smartcard or smartcard+biometric solutions (besides the limitations on key size (2048-bit RSA maximum) and flexability). However when it comes to SSH services for remote administration, windows filesharing, and SFTP for file transfers I have hit a dead end. I have looked into SSH but their SSH for Windows Servers only runs on 2000, and costs $565. I ask what solutions have /.er's found in the realm of ssh network encryption, and also in integrating all these components simply and effectively."

Tried VShell?

[triffidsting]

http://www.vandyke.com/products/vshell/

Unless you work *real* cheap

$565 covers your employers costs for you for about a day (maybe a little more).

If you need what SSH provides, buy the damn thing and get it over with. You'd spend a helluva lot more than 10 hours getting something else working - or even just looking for something else.

Re:openssh via cygwin.

[Telastyn]

One trick that helps is using NT resource kit's srvany to install SSHD as a service instead of cygwin's service installer. A google search can show you how. But then again a simple google search could've prevented this whole article...

Re:when you are too lazy to hit google

[Anonvmous+Coward]

Google helps you find stuff. Google does not give you informed recommendations from your peers. Duh.

Re:This should be in .NET server and ported to W2K

[ergo98]

Microsoft has already provided L2TP (and its predecessor PPTP) and IPSec: It is backwards, and quite frankly quite silly, to try to program encryption into every single program when you can utilize these system features to add encryption to any and all applications (and yes you can make it mandatory if you want. In 20 seconds I can configure my system to only allow IPSec high security communications to my HTTP server).

Re:when you are too lazy to hit google

[Qrlx]

Google helps you find stuff. Google does not give you informed recommendations from your peers. Duh.

Google search for "SSH Secure Services on Windows 2K" (cut and paste job from article title, leaving off /XP)

Result number ten is called "How to setup SSH service on an Windows NT\2000 system." using cygwin etc.

So there.

Re:Windows Programming: A related question

[Stonehand]

Pure, unadulterated bullshit of the worst sterotypical kind. Having actually /been/ there, and being aware of their recruitment procedures and also of their penchant for hiring damn fine academics who know their stuff, I can tell you that if you are a clod who can't think on his feet and doesn't know what he's doing, you won't get in. And the people that were there were pretty damn motivated to do well -- one has to be, in order to work at a company that's all but compared to the Third Reich these days.

Compare that to the unclean drivel in the Linux kernel, laden with intelligent comments like "Sun fucking blows me", clearly broken VMs that get released despite all those allegedly useful eyes staring at the code and supposedly testing it, and the unprofessional spats between the dev community.

And if you think caring about something means that it's so obviously superior, I would suggest that you consider the fanatical behavior of assorted cults throughout history -- or, alternately, the idiots on "American Idol" who clearly /care/ about their art, but can't do it worth a damn. The people who did the art for "Craft" and for that Warcraft clone and for that FreeCiv (clone...) probably /care/ about their art too, but graphically... there's no comparison with that produced by the pros.

As for why I code, when I do -- it's a method. Algorithms aren't too interesting if never tested, and I'm sure as hell not doing large amounts of repetitive mathematics by hand. So for me, programming is merely an extremely efficient way of getting things done, and not an ends in of itself. When it comes to recreation, I find classic literature or photography much more interesting than implementing Nelder-Mead simplex routines for function minimization, or their ilk.

Re:Cygwin is STANDARD on my Windows systems

[Verizon+Guy]

Personally, I think you're full of BS.

This should be a USENET post, not slashdot!

You know, beginner technical questions like this should be posted to comp.security.ssh or something. Not on a giant billboard like slashdot.

Cygwin instructions

[rwa2]

As mentioned before, getting up and running with Cygwin is a snap! Here are your easy instructions:

• Go to the cygwin site and click on the "install now" box on the side of the screen. Run the setup.exe program off the site (don't bother to save it somewhere, it gets updated almost weekly).
• Tell it to install from the internet. Choose a mirror. It'll download a list of packages. Choose the Net | OpenSsh package. If you want to run the server, you might also want to choose everything in the Admin section. I also find Net | rsync more useful than the scp that comes with openssh.
• Once the install is complete, fire it up and run ssh-host-config to set up the server. It'll ask you a bunch of simple questions, generate your hostkey, and stick the server in the startup scripts.

With just this, the whole install takes about 32MB.
Enjoy!

OpenSSH For Windows

[DougReed]

OpenSSH For Windows is what I use. It works pretty well. The Server only works on NT/2000 I think, but the client works on everything.

http://www.networksimplicity.com/openssh/