Mail Archives: cygwin/2006/11/02/15:48:05
On Nov 2 10:56, Linda Walsh wrote:
> You somewhat answered my question, indirectly.
> I wasn't aware windows had a "group" security descriptor
> in addition to the user-owner-creator field.
> Where does it store the information?
In the security descriptor. There's no such thing as a "group security
descriptor". The file's security descriptor contains all the info,
including owner, group, and DACL.
> It seems odd to have a Windows group field that no Windows utils
> would be able to set (or view). Is the windows group field
> actually used for anything?
Actually it's not utilized in Windows and for that reason not made
visible in the UI(*). The group field in the NTFS security descriptor
is necessary to be POSIX compliant though, that's why it exists. Same
goes for the primary group in access tokens.
> My NT-Win knowledge is nowhere close to my *nix knowledge, but I just
> didn't know of a windows-group field on files/processes, etc. I thought
> it was a "pseudo-security" field that only existed in cygwin and that
> cygwin somehow simulated by, perhaps, storing the info in an ACL...?
Nope.
> I'm not able to find a reference to a file's groupid via google,
> but I may not know the correct search terms. Is there a reference
> to the group field on MS's tech pages somewhere?
You could start here for instance:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/secauthz/security/security_descriptors.asp
Corinna
(*) It's utilized indirectly through the Creator Group SID (S-1-3-1),
but afaik it's not used in standard Windows SDs.
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Project Co-Leader cygwin AT cygwin DOT com
Red Hat
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
- Raw text -