Mail Archives: cygwin/2011/09/11/15:07:53
When a user with administrative privileges logs in to sshd, it seems that the user is only granted
standard user privileges for that session. Is there a way around that? How can I get the admin
privileges for that session?
Cygwin 1.7.9, Windows 7 Home Premium. I've created a user account in Windows named "backup" that I
want to use for backup operations. So, I want to be able to log in by ssh as user backup, and
perform read/write operations. Since my version of Windows 7 is a "Home" version there's no Backup
Operators group, so I've created the backup account as a standard user, and granted it backup and
restore privileges:
editrights -a SeBackupPrivilege -u backup
editrights -a SeRestorePrivilege -u backup
From what I can tell, these privileges should be sufficient for backup to read and write any files -
see e.g. http://msdn.microsoft.com/en-us/library/bb530716(v=vs.85).aspx. But when I log in on sshd
as user backup, I'm not able to read other users files. It seems that I've only been granted
standard user privileges.
Might this be caused by UAC? When I log in by ssh, there's no way for UAC to prompt me for
privilege escalation. Or, does it have to do with the implementation of sshd in Cygwin?
Most important, is it possible for the logged in sshd user to gain its elevated privileges?
Thanks,
Andrew.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
- Raw text -