* ACLs are not handled correctly
@ 2003-10-31 10:39 Dierk Schmedes
2003-10-31 11:18 ` Thorsten Kampe
0 siblings, 1 reply; 3+ messages in thread
From: Dierk Schmedes @ 2003-10-31 10:39 UTC (permalink / raw)
To: cygwin
Hi,
first my config: MS Windows XP SP1, cygwin 1.5.5 (actual version - 2 days old)
Problem: nearly each tool that the create or modify a file/directory (e.g. cp,
touch, setfacl) ignore the ALCs of the current directory or add further
users/groups to it.
Example
/home/dierk has the following ACLs (listed with xcalcs.exe from the MS
resource
kit; same with Explorer)
xcalcs F:/cygwin/home/dierk
f:\cygwin\home\dierk <domainname>\dierk:F
NT AUTHORITY\SYSTEM:(OI)(CI)(IO)R
Now I create a new file (e.g. touch /home/dierk/newfile). Everyone expect that
the file has the same rights as my home folder /home/dierk, BUT that isn't -
see
below:
xcacls F:/cygwin/home/dierk/newfile
f:\cygwin\home\dierk\newfile <domainname>\dierk:(special access:)
STANDARD_RIGHTS_ALL
DELETE
READ_CONTROL
WRITE_DAC
WRITE_OWNER
SYNCHRONIZE
STANDARD_RIGHTS_REQUIRED
FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_READ_DATA
FILE_WRITE_DATA
FILE_APPEND_DATA
FILE_READ_EA
FILE_WRITE_EA
FILE_READ_ATTRIBUTES
FILE_WRITE_ATTRIBUTES
<domainname>\Domain Users:(special access:)
READ_CONTROL
FILE_READ_EA
FILE_READ_ATTRIBUTES
Everyone:(special access:)
READ_CONTROL
FILE_READ_EA
FILE_READ_ATTRIBUTES
As you can see the ACLs are completly different to the one of my home folder.
Similar behaviour when I use setfacl, it adds automatically the last two (
<domainname>\Domain Users and Everyone) to the ACL even I don't want it.
This has strange impacts if "ntsec" is set for CYGWIN because you may have
than
no access to your own files.
Dierk
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: ACLs are not handled correctly
2003-10-31 10:39 ACLs are not handled correctly Dierk Schmedes
@ 2003-10-31 11:18 ` Thorsten Kampe
2003-10-31 12:37 ` Corinna Vinschen
0 siblings, 1 reply; 3+ messages in thread
From: Thorsten Kampe @ 2003-10-31 11:18 UTC (permalink / raw)
To: cygwin
* Dierk Schmedes (2003-10-31 10:15 +0100)
> Problem: nearly each tool that the create or modify a file/directory (e.g. cp,
> touch, setfacl) ignore the ALCs of the current directory or add further
> users/groups to it.
> Example
> /home/dierk has the following ACLs (listed with xcalcs.exe from the MS
> resource
> kit; same with Explorer)
> xcalcs F:/cygwin/home/dierk
> f:\cygwin\home\dierk <domainname>\dierk:F
> NT AUTHORITY\SYSTEM:(OI)(CI)(IO)R
> Now I create a new file (e.g. touch /home/dierk/newfile). Everyone expect that
> the file has the same rights as my home folder /home/dierk, [...]
Why? Cygwin doesn't support ACLs and inheritance - including Windows
ACLs. And "cp" or "touch" don't either - "umask" is the thing they
ask.
Thorsten
--
Content-Type: text/explicit; charset=ISO-8859-666 (Parental Advisory)
Content-Transfer-Warning: message contains innuendos not suited for
children under the age of 18
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: ACLs are not handled correctly
2003-10-31 11:18 ` Thorsten Kampe
@ 2003-10-31 12:37 ` Corinna Vinschen
0 siblings, 0 replies; 3+ messages in thread
From: Corinna Vinschen @ 2003-10-31 12:37 UTC (permalink / raw)
To: cygwin
On Fri, Oct 31, 2003 at 11:51:31AM +0100, Thorsten Kampe wrote:
> * Dierk Schmedes (2003-10-31 10:15 +0100)
> > Problem: nearly each tool that the create or modify a file/directory (e.g. cp,
> > touch, setfacl) ignore the ALCs of the current directory or add further
> > users/groups to it.
>
> > Example
> > /home/dierk has the following ACLs (listed with xcalcs.exe from the MS
> > resource
> > kit; same with Explorer)
>
> > xcalcs F:/cygwin/home/dierk
> > f:\cygwin\home\dierk <domainname>\dierk:F
> > NT AUTHORITY\SYSTEM:(OI)(CI)(IO)R
>
> > Now I create a new file (e.g. touch /home/dierk/newfile). Everyone expect that
> > the file has the same rights as my home folder /home/dierk, [...]
>
> Why? Cygwin doesn't support ACLs and inheritance - including Windows
> ACLs. And "cp" or "touch" don't either - "umask" is the thing they
> ask.
Cygwin does support ACLs, but only in a POSIX sense. Plus a funny (but
incomplete if it comes to inheritance) implementation of Solaris ACLs.
Cygwin is not Windows but POSIX on top of Windows.
Corinna
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Developer mailto:cygwin@cygwin.com
Red Hat, Inc.
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2003-10-31 11:13 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-10-31 10:39 ACLs are not handled correctly Dierk Schmedes
2003-10-31 11:18 ` Thorsten Kampe
2003-10-31 12:37 ` Corinna Vinschen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).