From: Corinna Vinschen <corinna@vinschen.de>
To: "Tolkin, Steve" <Steve.Tolkin@fmr.com>
Cc: cygwin@sourceware.cygnus.com
Subject: Re: NT security and cygwin
Date: Thu, 01 Jun 2000 14:20:00 -0000 [thread overview]
Message-ID: <3936D0FE.A330439E@vinschen.de> (raw)
In-Reply-To: <F614BF868E0DD411A5A700508B957E0038D006@MSGBOS679NTS.fmr.com>
"Tolkin, Steve" wrote:
>
> What prompted this was discovering that I could not delete files from /temp
> and also that rcs ci was failing (see next email).
> The answer to this first problem was that I needed to chmod +w /temp first.
>
> But I do not understand how cygwin interacts with NT security.
>
> I found some discussion of NT security in the mail archives at
> www.delorie.com/archives/browse.cgi specifically the item
> 3913FB8B.77A8647@vinschen.de
> "NT security and the ntsec usage"
>
> Is this on the web anywhere? Is it not available from
> www.vinschen.de
>
> It is only "Chapter 2. Setting up Cygwin". But is the rest of the Cygwin
> User;s guide avaiable somewhere?
>
> Q0. The /temp directory was created a long time ago. When I first looked
> using ls -ld it had
> permissions dr-xr-xr-x Is this standard for directories created in DOS?
> What other directories
> might not be writable, that I should change now?
>
> Q1. In NT I am am member of a domain and my USERNAME is SY71046.
> Why isn't that used in cygwin?
> I ran mkpasswd -d and saw 900 users in my domain -- but not me!
> Is this part of the problem?
>
> Q2. Why does id report administrator with a lowercase a but passwd has one
> with an upper case A?
>
> 504~> id
> uid=500(administrator) gid=544(Administrators) groups=544(Administrators)
>
> Q3. I'd rather than new files be created by my id than administartor.
> How can I achieve that?
> 527/etc> touch foo
> 528/etc> ls -l foo
> -rw-rw-rw- 1 administ Administ 0 Jun 1 11:05 foo
>
> Here is my /etc/passwd, slightly sanitized
> Everyone:*:0:0:,S-1-1-0::
> SYSTEM:*:18:18:,S-1-5-18::
> Administrator::500:544:,S-1-5-....-500::/bin/sh
> Guest::501:513:,S-1-5-21-....-501::/bin/sh
> stolkin::1000:544:Steven Tolkin,S-1-5-21-...-1000::/bin/sh
> VUSR_BOSA454958::1001:513:VSA Server Account,S-1-5-21-....-1001::/bin/sh
>
> Note that I changed the group number for administrator, and for stolkin.
> They were originally emited by mkpasswd -l as value 513, meaning none.
All what you want is possible when adding `ntsec' to the
env.var CYGWIN. The documentation for ntsec is currently
only in the sources but I have posted it as html in
this mailing list a few weeks ago. Search the archive.
Corinna
--
Corinna Vinschen
Cygwin Developer
Cygnus Solutions, a Red Hat company
--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe@sourceware.cygnus.com
next prev parent reply other threads:[~2000-06-01 14:20 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2000-06-01 8:13 Tolkin, Steve
2000-06-01 8:56 ` Chris Faylor
2000-06-01 14:20 ` Corinna Vinschen [this message]
2000-06-01 14:47 Tolkin, Steve
2000-06-01 14:53 David Bolen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3936D0FE.A330439E@vinschen.de \
--to=corinna@vinschen.de \
--cc=Steve.Tolkin@fmr.com \
--cc=cygwin@sourceware.cygnus.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).