delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2002/10/01/04:22:00

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Date: Tue, 1 Oct 2002 08:55:43 +0200 (MEST)
From: Bjoern Kahl AG Resy <kahl AT informatik DOT uni-kl DOT de>
To: =?iso-8859-1?Q?valcauda_St=E9phane?= <valcauda DOT aderis AT wanadoo DOT fr>
cc: cygwin <cygwin AT cygwin DOT com>
Subject: Re: Login command
In-Reply-To: <001001c268d9$ee762fb0$c5953051@POSTE1>
Message-ID: <Pine.GSO.4.44.0210010828330.1267-100000@domino.informatik.uni-kl.de>
MIME-Version: 1.0 

 Hallo !

 This has been discussed some time ago, but anyway:

On Tue, 1 Oct 2002, valcauda Stéphane wrote:

> When I try "login " command with any of  my windows NT account / password,
> it doesn't work.
> even after MkPasswd.
>
> Is it a problem of passwd or something else ?
> I read the FAQ on SU problem, but I don't find answers to solve this login
> problem.


 If there is no SU, then Login cant work either, because both, SU
 and login, do basicly the same thing:
 They create a (unprivileged) session, comeing from an privileged
 execution-environment (typical "root" on unix-systems) by setting
 usercontext (using there "root"-privileges to do so).

 One difference between SU and Login is, that Login is run by a
 root-process (init) and SU carries the "root"-privileges in its
 file-attributes (the "s"-bit).

 Under NT, there is no such thing like a "s"-bit (s == (S)et User).
 That is, why SU does not work. The SU-binary cant get
 "root"-privilegies (under NT: == running as "SYSTEM")

 Same for Login on the command-line:
 Only SYSTEM under NT (or "root" under unix) may change
 user-context. A "Login" invoked on the command-line does not
 run as "SYSTEM" (under NT), therefor cant change usercontext.


 In short:
 If you have to login to different accounts, setup ssh, running
 the sshd under SYSTEM (the only account, that *can* change
 usercontext) and login to your box via ssh (ssh someuser AT localhost).
 See the ssh-documentation under /usr/doc/Cygwin in your
 Cygwin-installation for deatils on ssh.


 Have fun

   Bjoern Kahl

P.S.: Can this be included in the FAQ?
      :-) After english proof-reading :-)
-- 
+---------------------------------------------------------------------+
| Dipl.-Phys. Bjoern Kahl +++ AG Embedded Systems and Robotics (RESY) |
| Informatics Faculty +++ Building 48 +++ University of Kaiserslautern|
| phone: +49-631-205-2654 +++ www: http://resy.informatik.uni-kl.de   |
+---------------------------------------------------------------------+


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019