X-Recipient:	archive-cygwin AT delorie DOT com
X-Spam-Check-By:	sourceware.org
From:	"Ken Turner" <kjt AT cs DOT stir DOT ac DOT uk>
To:	<cygwin AT cygwin DOT com>
References:
Subject:	RE: Mapping of Windows Domains?
Date:	Wed, 23 Jul 2008 23:54:49 +0100
Message-ID:	<A429DE94891B4453B352D550FF841EC4@Wampum>
MIME-Version:	1.0
X-Mailer:	Microsoft Office Outlook 11
In-Reply-To:
X-stir.ac.uk-MailScanner:	Found to be clean
X-stir.ac.uk-MailScanner-From:	kjt AT cs DOT stir DOT ac DOT uk
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com

| >>> It turns out that these files are being served up with a fake domain
| >>> name "D1" (because our Unix server isn't part of a Windows domain).
| >>> When I log in I am authenticated against a real domain "D2". As a
| >>> result, "D2\kjt" cannot access files whose permissions are set for
| >>> "D1\kjt". There doesn't seem to be any way of influencing the choice of
| >>> fake domain name "D1", so I need a client-side solution.
| 
| > The fact remains that I'm stuck with a 2.5 year old version of CygWin.
| > I've described the problem in two posts, but haven't managed to find a
| > solution. Since the above is evidently a non-starter, have you any idea
| > how to get round this problem? Alternatively, what changed in this area
| > with CygWin 1.5.18-2? Thanks for your time.

|   Wait, are you saying it still works if you revert your cygwin DLL?

That's right. I continue to use CygWin 1.5.18-1 and it works fine with our
network file server. Every CygWin update since then doesn't ("permission denied"
on the network share).

| I was
| assuming something must have changed on your server since that version was
| released, but maybe your server is actually configured to give read access
| to world/none, and the checking actually is being done at the cygwin end?

The network file server reports appropriate Windows permissions for D1\kjt. I
think the problem is that I'm authenticated as D2\kjt, and that user isn't
allowed to access files with permissions for D1\kjt.

| If that's the case you might be able to fix it up by fudging your
| /etc/passwd so that it says D1\kjt instead of D2\kjt - the SID will still
| point at D2\kjt in any case.

I've played about with /etc/passwd, domain SIDs, etc. without success. I think I
tried your suggestion at some point, but it's worth revisiting as I've lost
track of the things I've tried over the last couple of years. Thanks again.


-- 
Academic Excellence at the Heart of Scotland.
The University of Stirling is a charity registered in Scotland, 
 number SC 011159.


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -