Mail Archives: cygwin/2014/11/17/09:36:56

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2014/11/17/09:36:56

X-Recipient: archive-cygwin AT delorie DOT com

DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:mime-version:in-reply-to:references:date

:message-id:subject:from:to:content-type; q=dns; s=default; b=HV

75qJiJeJPXMsP02B7tKkGe0xNK5DuQTzyz6eqS8BrA502N7Gdn6E/3n0X6f6jZvl

aTqP3hUBNXtWrPaGIRM8sPfA5kFhvyd6cRq/CX5mFYIMyvA6kNCE6hw9Yss4Cgzu

d7CXPyQSbuGxysZY3fLpxRm44P6AwNb7zaiNYZYpE=

DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:mime-version:in-reply-to:references:date

:message-id:subject:from:to:content-type; s=default; bh=m1JYmnUW

KeQtqYa+osB/rgprJVk=; b=Sb74bkLcb/hXPSusqrQQP8KVO5F+lKyJyoJv94Y9

TAI8yVAKyRaM5CANSp0ZBJBKSAdbHXbIV6X/XAlLWDeqO79hNQs+faHcZ+qzjKYz

iu8Le6xUr0vJmA+Bs8SMazeRaRDJ9xCsbSGOmApCncLLeYhSCgHwh3xdx2eDxBO1

amI=

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Id: <cygwin.cygwin.com>

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sourceware.org/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

Authentication-Results: sourceware.org; auth=none

X-Virus-Found: No

X-Spam-SWARE-Status: No, score=-2.1 required=5.0 tests=AWL,BAYES_00,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2

X-HELO: mail-la0-f45.google.com

MIME-Version: 1.0

X-Received: by 10.112.147.225 with SMTP id tn1mr28012974lbb.37.1416234994987; Mon, 17 Nov 2014 06:36:34 -0800 (PST)

In-Reply-To: <CAD8GWss-DSbSNwW6tZTa+nRWpe3LGk-GD5dr7F2Bqhymgw8VXA@mail.gmail.com>

References: <81578012-FD3F-4463-BC56-ADB092317DD4 AT etr-usa DOT com> <CABa6CEkRV=3FY6ZVGrdt--rH3PppwCJRD5poU0L2knv2k2ce_w AT mail DOT gmail DOT com> <25F385A9-3E2D-44FC-998F-D2672F67DFE4 AT etr-usa DOT com> <m40npq$vrq$1 AT ger DOT gmane DOT org> <ECD073FF-B78C-4D19-8DE1-5F4E390D2495 AT etr-usa DOT com> <20141113093335 DOT GI2782 AT calimero DOT vinschen DOT de> <40005E53-A327-4E4A-8C71-514E505F9FBC AT etr-usa DOT com> <CAD8GWstJ+BkbkCJfE_48=b2cg0uzc8pkd1UnevP6-=3DHL+Buw AT mail DOT gmail DOT com> <546795E3 DOT 4090806 AT secure-endpoints DOT com> <CAD8GWss-DSbSNwW6tZTa+nRWpe3LGk-GD5dr7F2Bqhymgw8VXA AT mail DOT gmail DOT com>

Date: Mon, 17 Nov 2014 09:36:34 -0500

Message-ID: <CABa6CEnUfVRLr8FA3ggXk+TZdG-qfe6L3MUpK2oXRyWRxnZotA@mail.gmail.com>

Subject: Re: /usr/local, /var and */tmp in c:\Users\Public

From: cyg Simple <cygsimple AT gmail DOT com>

To: cygwin AT cygwin DOT com

X-IsSubscribed: yes

On Sat, Nov 15, 2014 at 1:41 PM, Lee wrote:
> On 11/15/14, Jeffrey Altman wrote:
>> On 11/15/2014 12:55 PM, Lee wrote:
>>
>>>> So, just because I installed Cygwin with my regular user account,
>>>
>>> You're doing it wrong.  Install Cygwin using an admin account and
>>> regular user accounts are not allowed write access to system
>>> files/directories:
>>
>> This feels really wrong to me.  If installing Cygwin under a non-admin
>> account results in a potential security vulnerability, then the
>> installer should be taking that into account.
>
> I would argue that no, the installer should _not_ take that into
> account.  If someone wants to install cygwin under their regular
> userid, why should the installer try to work around that?  The files
> are installed with the "correct" permissions if the windows admin has
> an administrator account for doing admin chores & a regular user
> account for doing day to day user tasks.

Because a user who is using a corporate laptop with administrator
accounts locked down would not be able to install Cygwin.

Because a user who is used to having ownership of the files he
installs would become frustrated that he could not remove Cygwin by
simply opening the Windows explorer, picking his way to the Cygwin
root folder, right clicking it and saying Delete.

Because this list would become overrun with queries of why can't I add
a program from an archive to the /usr/bin directory or remove or ...

An install "Only for the user" should not create such locked down
control of the system without asking.  Some users tend to know what to
do and what not to do and do not want the extra measures to protect
themselves.

-- 
cyg Simple

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

X-Recipient:	archive-cygwin AT delorie DOT com
DomainKey-Signature:	a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:content-type; q=dns; s=default; b=HV
	75qJiJeJPXMsP02B7tKkGe0xNK5DuQTzyz6eqS8BrA502N7Gdn6E/3n0X6f6jZvl
	aTqP3hUBNXtWrPaGIRM8sPfA5kFhvyd6cRq/CX5mFYIMyvA6kNCE6hw9Yss4Cgzu
	d7CXPyQSbuGxysZY3fLpxRm44P6AwNb7zaiNYZYpE=
DKIM-Signature:	v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:content-type; s=default; bh=m1JYmnUW
	KeQtqYa+osB/rgprJVk=; b=Sb74bkLcb/hXPSusqrQQP8KVO5F+lKyJyoJv94Y9
	TAI8yVAKyRaM5CANSp0ZBJBKSAdbHXbIV6X/XAlLWDeqO79hNQs+faHcZ+qzjKYz
	iu8Le6xUr0vJmA+Bs8SMazeRaRDJ9xCsbSGOmApCncLLeYhSCgHwh3xdx2eDxBO1
	amI=
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Authentication-Results:	sourceware.org; auth=none
X-Virus-Found:	No
X-Spam-SWARE-Status:	No, score=-2.1 required=5.0 tests=AWL,BAYES_00,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2
X-HELO:	mail-la0-f45.google.com
MIME-Version:	1.0
X-Received:	by 10.112.147.225 with SMTP id tn1mr28012974lbb.37.1416234994987; Mon, 17 Nov 2014 06:36:34 -0800 (PST)
In-Reply-To:	<CAD8GWss-DSbSNwW6tZTa+nRWpe3LGk-GD5dr7F2Bqhymgw8VXA@mail.gmail.com>
References:	<81578012-FD3F-4463-BC56-ADB092317DD4 AT etr-usa DOT com> <CABa6CEkRV=3FY6ZVGrdt--rH3PppwCJRD5poU0L2knv2k2ce_w AT mail DOT gmail DOT com> <25F385A9-3E2D-44FC-998F-D2672F67DFE4 AT etr-usa DOT com> <m40npq$vrq$1 AT ger DOT gmane DOT org> <ECD073FF-B78C-4D19-8DE1-5F4E390D2495 AT etr-usa DOT com> <20141113093335 DOT GI2782 AT calimero DOT vinschen DOT de> <40005E53-A327-4E4A-8C71-514E505F9FBC AT etr-usa DOT com> <CAD8GWstJ+BkbkCJfE_48=b2cg0uzc8pkd1UnevP6-=3DHL+Buw AT mail DOT gmail DOT com> <546795E3 DOT 4090806 AT secure-endpoints DOT com> <CAD8GWss-DSbSNwW6tZTa+nRWpe3LGk-GD5dr7F2Bqhymgw8VXA AT mail DOT gmail DOT com>
Date:	Mon, 17 Nov 2014 09:36:34 -0500
Message-ID:	<CABa6CEnUfVRLr8FA3ggXk+TZdG-qfe6L3MUpK2oXRyWRxnZotA@mail.gmail.com>
Subject:	Re: /usr/local, /var and */tmp in c:\Users\Public
From:	cyg Simple <cygsimple AT gmail DOT com>
To:	cygwin AT cygwin DOT com
X-IsSubscribed:	yes