From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 19459 invoked by alias); 31 Oct 2003 09:15:11 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 19449 invoked from network); 31 Oct 2003 09:15:08 -0000 Received: from unknown (HELO newsguy.com) (129.250.170.69) by sources.redhat.com with SMTP; 31 Oct 2003 09:15:08 -0000 Received: from newsguy.com (dierkger@localhost [127.0.0.1]) by newsguy.com (8.12.9/8.12.8) with ESMTP id h9V9F6ig016116 for ; Fri, 31 Oct 2003 01:15:06 -0800 (PST) (envelope-from dierkger@newsguy.com) Received: (from dierkger@localhost) by newsguy.com (8.12.9/8.12.8/Submit) id h9V9F6oW016115 for cygwin@cygwin.com; Fri, 31 Oct 2003 01:15:06 -0800 (PST) (envelope-from dierkger) Date: Fri, 31 Oct 2003 10:39:00 -0000 Message-Id: <200310310915.h9V9F6oW016115@newsguy.com> To: cygwin@cygwin.com From: Dierk Schmedes Subject: ACLs are not handled correctly X-SW-Source: 2003-10/txt/msg01825.txt.bz2 Hi, first my config: MS Windows XP SP1, cygwin 1.5.5 (actual version - 2 days old) Problem: nearly each tool that the create or modify a file/directory (e.g. cp, touch, setfacl) ignore the ALCs of the current directory or add further users/groups to it. Example /home/dierk has the following ACLs (listed with xcalcs.exe from the MS resource kit; same with Explorer) xcalcs F:/cygwin/home/dierk f:\cygwin\home\dierk \dierk:F NT AUTHORITY\SYSTEM:(OI)(CI)(IO)R Now I create a new file (e.g. touch /home/dierk/newfile). Everyone expect that the file has the same rights as my home folder /home/dierk, BUT that isn't - see below: xcacls F:/cygwin/home/dierk/newfile f:\cygwin\home\dierk\newfile \dierk:(special access:) STANDARD_RIGHTS_ALL DELETE READ_CONTROL WRITE_DAC WRITE_OWNER SYNCHRONIZE STANDARD_RIGHTS_REQUIRED FILE_GENERIC_READ FILE_GENERIC_WRITE FILE_READ_DATA FILE_WRITE_DATA FILE_APPEND_DATA FILE_READ_EA FILE_WRITE_EA FILE_READ_ATTRIBUTES FILE_WRITE_ATTRIBUTES \Domain Users:(special access:) READ_CONTROL FILE_READ_EA FILE_READ_ATTRIBUTES Everyone:(special access:) READ_CONTROL FILE_READ_EA FILE_READ_ATTRIBUTES As you can see the ACLs are completly different to the one of my home folder. Similar behaviour when I use setfacl, it adds automatically the last two ( \Domain Users and Everyone) to the ACL even I don't want it. This has strange impacts if "ntsec" is set for CYGWIN because you may have than no access to your own files. Dierk -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/