From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 8179 invoked by alias); 16 Aug 2012 09:04:24 -0000 Received: (qmail 8042 invoked by uid 22791); 16 Aug 2012 09:03:59 -0000 X-Spam-Check-By: sourceware.org Received: from aquarius.hirmke.de (HELO calimero.vinschen.de) (217.91.18.234) by sourceware.org (qpsmtpd/0.83/v0.83-20-g38e4449) with ESMTP; Thu, 16 Aug 2012 09:03:47 +0000 Received: by calimero.vinschen.de (Postfix, from userid 500) id AB2352C00CA; Thu, 16 Aug 2012 11:03:44 +0200 (CEST) Date: Thu, 16 Aug 2012 10:31:00 -0000 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: Question about UAC and bash/cygwin Message-ID: <20120816090344.GD5536@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <502C6B1C.5030900@cygwin.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.21 (2010-09-15) Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com X-SW-Source: 2012-08/txt/msg00366.txt.bz2 On Aug 16 03:39, Lord Laraby wrote: > Larry Hall (Cygwin) wrote: > > On 8/15/2012 5:39 AM, Lord Laraby wrote: > > > >> Sorry if the questions are a bit too numerous. I wish I could just > >> siphon knowledge from Corinna's brain.:) > > > > Then that would leave her with none! > > I wouldn't need *all* of her knowledge of course. Just a small amount > would improve my understanding immensely. > > > > > Probably the key point that you're stumbling over is the fact that > > when you're elevating your user's privileges, you're not changing > > from that user to 'root' but rather just enabling privileges the user > > is allowed to use. 'whoami' will not change. This is a difference > > between Windows and Unix/Linux security models. > > I see that, of course. But it was always my assumption (a warranted > one I expect from some of the other posts I've read) that since > neither su, nor sudo, nor newgrp, login allows becoming root in cygwin > - and any administrator on a linux box can use those to become root. > So then, privilege elevation would be the closest analogy (for WIndows > 7 etc.). After all, there is no *real* user named root on 99.9% of > boxes out there. An administrator gets the power to become root for a > time. Same with UAC, etc. > > So0, you see where I'm coming from with my thinking, an Administrator > is adble to become Windows version of root. Same as on Linux. It's not > not really possible using cygwin. That has nothing to do with Cygwin. It's a restriction of the CreateProcess system call. If you want to elevate, you have to elevate the first process in the process chain, usually mintty. All child processes will be elevated as well. Corinna -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Project Co-Leader cygwin AT cygwin DOT com Red Hat -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple