From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 1021 invoked by alias); 30 Jul 2014 15:01:15 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 974 invoked by uid 89); 30 Jul 2014 15:01:05 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-5.9 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.3.2 X-HELO: calimero.vinschen.de Received: from aquarius.hirmke.de (HELO calimero.vinschen.de) (217.91.18.234) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Wed, 30 Jul 2014 15:01:02 +0000 Received: by calimero.vinschen.de (Postfix, from userid 500) id 1F9CB8E05FF; Wed, 30 Jul 2014 17:01:00 +0200 (CEST) Date: Wed, 30 Jul 2014 15:01:00 -0000 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: Simplify AD integration? Message-ID: <20140730150100.GO25860@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <20140730134716.GM25860@calimero.vinschen.de> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="/rDaUNvWv5XYRSKj" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.23 (2014-03-12) X-SW-Source: 2014-07/txt/msg00346.txt.bz2 --/rDaUNvWv5XYRSKj Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Content-length: 2802 On Jul 30 14:38, Achim Gratz wrote: > Corinna Vinschen cygwin.com> writes: > > 1. Shall we remove the leading '+' from the builtin account names > > or shall we keep it? >=20 > I'd rather keep it since it's a good reminder where that comes from. >=20=20 > > 2. Shall we stick to '+' as the separator char or choose another one? > > If so, which one? >=20 > WJFFM at the moment, so I don't see a pressing need for variability. >=20 > > 3. Shall we keep the `db_prefix' variability or choose one of > > the prefixing methods and stick to it? If so, which one, auto, > > primary, or always? >=20 > I'd rather keep this, although "auto" is all I use at the moment. BTW, > would it be possible to recognize PRIMARYDOMAIN+user and (auto) user be > recognized as the same thing when auto is in effect? The ability to > explicitly specify the prefix even though it isn't necessarily displayed > would most likely remove much of the potential need for variability in th= at > department I'm not sure if that would work as expected. Cygwin explicitely tests if the account name follows the current rule. I'm not so sure what effects it would have, if getpwnam could return another username as the one given as parameter (apart from the case difference). (and defuse the booby trap in chown). Well, hmm. If we allow to specify "NT AUTHORITY+SYSTEM" or "BUILTIN+Administrators" even in "auto" or "primary" mode... Unfortunately this won't help in all cases. I used a broken example :( The "LOCAL" account and a few others have NO domain. Thus, they are simply +-prefixed ("+LOCAL"), even in 'db_prefix: always' mode. Tricky. > If you keep it, then there's an obvious candidate missing: "local+other", > which should prefix all accounts except the primary domain ones. Do you mean builtin accounts; "NT AUTHORITY+SYSTEM", "BUILTIN+Administrators", ... primary domain "corinna", "cgf", ... other domain: "DOMAIN1+walter", "DOMAIN2+mathilda" ? > So it'd be > better to simply flag which groups to prefix, I'd think ("local", "primar= y", > "other") and specify this like symbolic modes in chmod, perhaps? >=20 > > Bonus question: > >=20 > > 4. Should Cygwin downcase all usernames when generating the Cygwin > > username, so, if your Windows username is 'Ralph', your Cygwin > > username will be 'ralph'? >=20 > I'd be in favor of this since I've already had two users that wouldn't see > their home directories until I figured out that they'd have their names > capitalized in AD... as long as Windows is unable to distinguish users > based on the case there shouldn't be a problem. Corinna --=20 Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Maintainer cygwin AT cygwin DOT com Red Hat --/rDaUNvWv5XYRSKj Content-Type: application/pgp-signature Content-length: 819 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJT2QirAAoJEPU2Bp2uRE+gZIQP/2rEo4M9n5OpG0+362cO/mL5 OcDswJYkQWFGGNZU1U7N7kg+bZzQUiW2fLtly93ankvWxH5ZZicOzZ2lWiORP5Uh PBT9qAbIJmUmDkc2s3PmO+ncnrfKhoOok4NpR5qqX+/8NL1jWbBVwuI/LrrZCwgh eA90VJdZZq6QAiw3WnZ6KNHI2qqWP6cgx7WE0mX7/1RAres5TnQQuosWvj8mDfHY YV/raEmR+CmD+WKweVJlYhgqqhWe7ehfDk1Q/khkqBZScQzsA67FT34nLK73m6ud nfb2nFXh3xmx3Z8ROKTI5BGnvPdvJJne85PpKrxc/O6Ddp639mQt/DyX6TxM4Qbs PVQHNjs8IsAhvLFrAFJC8QdDPC/W2qjojcnFg33ChUloHfzFP8isqLpU4qeNYcMQ BE+rwJK89pHqieHyziDVmYVQGnsNA/kObceajdndOU4OGc+tAdoX85JY6cGU24W2 l0G7qnNVd6oXJq40XKB05iA1i1lIyXqGKkJ+BHCVUtOSMG6oOUrqmnqh/0fOcuMg XaZxCX5QvagPT/4o8mlBBJOKSbky8/1fTZ/vMt616EhNFZUEpjlwqkZ6TpiFNf1f L+ftABaaRVBvqa1n+yCXFBFj5QaFgPwf3xx5LP19b63awzPt1zjmlw9xddIv5Kn0 G4qKB0SMdpsSI26uK355 =8oDl -----END PGP SIGNATURE----- --/rDaUNvWv5XYRSKj--