From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mailout07.t-online.de (mailout07.t-online.de [194.25.134.83]) by sourceware.org (Postfix) with ESMTPS id 175043858407 for ; Tue, 4 Oct 2022 12:06:02 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 175043858407 Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=t-online.de Authentication-Results: sourceware.org; spf=none smtp.mailfrom=t-online.de Received: from fwd80.dcpf.telekom.de (fwd80.aul.t-online.de [10.223.144.106]) by mailout07.t-online.de (Postfix) with SMTP id 4F6FD16E90; Tue, 4 Oct 2022 14:05:41 +0200 (CEST) Received: from [192.168.2.101] ([79.230.173.42]) by fwd80.t-online.de with (TLSv1.3:TLS_AES_256_GCM_SHA384 encrypted) esmtp id 1ofgg6-1bgmI40; Tue, 4 Oct 2022 14:05:38 +0200 Subject: Re: [PATCH setup] Add new option --chown-admin To: Jon Turney , "cygwin-apps@cygwin.com" References: <3096f251-d7ca-073b-d7d7-751b7fe3e8c1@t-online.de> <405df5c6-ce47-0254-ae4d-4a23ff3533d5@dronecode.org.uk> <5b45ccdc-da32-ff11-037f-c00828f397c5@dronecode.org.uk> <32655945-5075-0823-2a1d-b72caa4b7791@t-online.de> <038c3558-b424-3e4b-9de6-bd3eb6147406@t-online.de> <80661301-d584-3af0-e588-1ec10f3b4108@dronecode.org.uk> <9f1a7088-4f4f-999b-3076-be347477c969@t-online.de> <0d8da07f-56dc-063d-d735-347d14ef441c@dronecode.org.uk> <0824aef9-3abb-4959-6007-48271f407582@dronecode.org.uk> From: Christian Franke Message-ID: <064f7b6b-ff09-8544-f444-63e92eea1b4d@t-online.de> Date: Tue, 4 Oct 2022 14:05:38 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 SeaMonkey/2.53.12 MIME-Version: 1.0 In-Reply-To: <0824aef9-3abb-4959-6007-48271f407582@dronecode.org.uk> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-TOI-EXPURGATEID: 150726::1664885138-C23211D1-6FE69179/0/0 CLEAN NORMAL X-TOI-MSGID: a337a1e3-e8c2-45d8-b92d-96b7bd336aef X-Spam-Status: No, score=-5.1 required=5.0 tests=BAYES_00,FREEMAIL_FROM,KAM_DMARC_STATUS,KAM_LAZY_DOMAIN_SECURITY,NICE_REPLY_A,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_NONE,TXREP autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: Jon Turney wrote: > On 02/09/2022 16:17, Christian Franke wrote: >> Jon Turney wrote: >>> On 28/08/2022 18:33, Christian Franke wrote: >>>> As the 'root_scope' issues are now fixed, here a reworked and >>>> enhanced (checkbox, setup.rc entry) version of the original patch >>>> from this thread. >>>> >>>> With the new setting enabled, setup behaves like other install >>>> tools when run elevated: The installation is then also protected >>>> against accidental modifications by the current user. >>>> >>>> owner:group assignments of newly installed dirs/files: >>>> >>>> adm:adm -- "All Users", "[X] Change owner of newly installed files >>>> to local Administrator" >>>> usr:adm -- "All Users" >>>> usr:def -- "Just Me" >>>> >>>> (usr = user running setup, adm = S-1-5-32-544, def = S-1-5-21-*-513) >>>> >>> >>> Thanks.  When writing the change summary for the last RC, I wondered >>> what the file owner should be. >>> >>> I guess my question is, if adm:adm ownership is correct, and >>> expected for consistency with other Windows installers, why not make >>> that the default? and then do we really need to provide the current >>> behaviour as an option, if it's "wrong". >> >> Two good questions. I'm not sure. > > Well, perhaps we can explore that by asking what is the motivation for > this change?  Does the current situation cause you a problem? Is is it > just motivated by the concern that the user running setup could > accidentally modify the installation, or something else? If "All Users" is selected, the installation should IMO be protected against the same user if not elevated. This is automatically the case for other installers because Windows sets TokenOwner=Administrator if elevated. > > Corinna had some concerns about making the owner a group, rather than > a user, which I believe historically caused some difficulties in > Cygwin, so I think I'll need to understand that better before making a > decision about this change. I see. Do you have any info about these difficulties? Are these still relevant? If yes, let's forget this patch.