From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 7420 invoked by alias); 31 Jul 2014 12:48:44 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 7411 invoked by uid 89); 31 Jul 2014 12:48:43 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-1.8 required=5.0 tests=AWL,BAYES_00,RCVD_IN_DNSWL_LOW,RP_MATCHES_RCVD,SPF_HELO_PASS,SPF_PASS autolearn=ham version=3.3.2 X-HELO: plane.gmane.org Received: from plane.gmane.org (HELO plane.gmane.org) (80.91.229.3) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with (AES256-SHA encrypted) ESMTPS; Thu, 31 Jul 2014 12:48:42 +0000 Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1XCpmg-000234-FL for cygwin@cygwin.com; Thu, 31 Jul 2014 14:48:38 +0200 Received: from boland.xs4all.nl ([213.84.69.3]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 31 Jul 2014 14:48:38 +0200 Received: from daniel by boland.xs4all.nl with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 31 Jul 2014 14:48:38 +0200 To: cygwin@cygwin.com From: "D. Boland" Subject: Re: The eternal uid issue Date: Thu, 31 Jul 2014 12:48:00 -0000 Message-ID: <53DA3C31.3ACB14DF@boland.nl> References: <20140723152357.GA24446@calimero.vinschen.de> <53D0AD3A.1FDF0B3F@boland.nl> <20140724135222.GD12212@calimero.vinschen.de> <53D17DCD.726524E0@boland.nl> <20140725124200.GC8725@calimero.vinschen.de> <53D604BC.1CBD4557@boland.nl> <20140728091409.GA25860@calimero.vinschen.de> <53D6373A.193E3E47@boland.nl> <20140728115308.GA11725@calimero.vinschen.de> <53D7A371.BB5912EB@boland.nl> <20140730131047.GL25860@calimero.vinschen.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-IsSubscribed: yes X-SW-Source: 2014-07/txt/msg00378.txt.bz2 Corinna Vinschen wrote: > > On Jul 29 15:36, D. Boland wrote: > > Corinna Vinschen wrote: > > > The permissions of the home folder are set to 01777 by default (S_ISVTX > > > bit!). Since we can't rely on central administration for Cygwin, this > > > allows a user to create her own homedir automatically at first start of > > > a Cygwin shell. > > > > > > You might consider to disable this full patch check in sendmail for > > > Cygwin. Is there some configuration flag, maybe? > > > > > > > If I make the 'Users' group owner of the /home folder and remove the world-writable > > bit, Sendmail doesn't complain anymore. I found out that everybody who is logged on, > > will be put in the 'Users' group anyway. > > Uhm... that works for you, but you can't rely on that for a sendmail > package. You'd have to deal with the default 01777 /home as well. Yes, yes, I know. Cygwin shouldn't want to lock their users out of their own system. Sendmail is a real b&^ch with security. This project cost me 2 1/2 weeks straight, trying to figure out a way to accomodate its strict impersonation rules on a system which has multiple root users. But I did it. No hacking in the sendmail source code. Anyway, today I tested it succesfully on my Win7 machine (32bit Cygwin), but no complaining from Sendmail, even with a home folder which is group- and world writable. Strange. Cincerely, Daniel -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple