| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| DomainKey-Signature: | a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:date:from:to:message-id:in-reply-to:subject | |
| :mime-version:content-type:content-transfer-encoding; q=dns; s= | |
| default; b=w43hikDdcWeV1USEJphSFd8yRu0WJL5P8IaCKBVF4/3H9B96PUScd | |
| E1udfcfIMJOAVkXpB/CfqwQVMkEAa/8fsbZ1HTv+RpjbC9iHexIfJ6ktE6iDtJn9 | |
| 6P5brZ5ncEuB5k57uQkj+W6q246b+PjeZrk8nbZaByNC+TtKED1WLY= | |
| DKIM-Signature: | v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:date:from:to:message-id:in-reply-to:subject | |
| :mime-version:content-type:content-transfer-encoding; s=default; | |
| bh=onRIW+ILJnnQPmqG3i4p2tt5t1A=; b=HDUMLp+9q5e08ZPxwNaD0ZiLajdI | |
| Y01Xw6YBQmAUSUQVS6N4YPH5Aw2pA2eadZMA8yng9UyTxSlMeLFfb2+7w3A58Fju | |
| k4ivEhrkym4sjDUUdHpxqsB5k1msfeQ2p8f0oVQYKB9MuJP6Z/xR6Ac8L3kk1tmd | |
| lzDAIGPEs70u1xU= | |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
| Authentication-Results: | sourceware.org; auth=none |
| X-Virus-Found: | No |
| X-Spam-SWARE-Status: | No, score=4.5 required=5.0 tests=AWL,BAYES_95,FREEMAIL_FROM,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_DNSWL_LOW autolearn=no version=3.3.2 spammy=H*M:root, compte, deny, obliged |
| X-HELO: | smtp1-g21.free.fr |
| Date: | Mon, 7 Mar 2016 20:12:03 +0100 (CET) |
| From: | akikij AT free DOT fr |
| To: | cygwin AT cygwin DOT com |
| Message-ID: | <1936538945.131164828.1457377923154.JavaMail.root@zimbra93-e16.priv.proxad.net> |
| In-Reply-To: | <1160735037.124947226.1457200185315.JavaMail.root@zimbra93-e16.priv.proxad.net> |
| Subject: | Re: Issues with ACL settings after updating to the latest cygwin.dll - correction |
| MIME-Version: | 1.0 |
| X-Authenticated-User: | akikij AT free DOT fr |
| X-MIME-Autoconverted: | from quoted-printable to 8bit by delorie.com id u27JCKlE012901 |
Hi, Corinna
Here an example of one problematic ACL
Here on /etc directory (here on remote system)
$ cacls .
...\ws\njcyg\etc NULL SID:(DENY)(accès spécial :)
READ_CONTROL
<Domaine du compte introuvable>F
<Domaine du compte introuvable>R
Tout le monde:R
NULL SID:(OI)(CI)(IO)(DENY)(accès spécial :)
READ_CONTROL
CREATEUR PROPRIETAIRE:(OI)(CI)(IO)F
GROUPE CREATEUR:(OI)(CI)(IO)R
Tout le monde:(OI)(CI)(IO)R
$ getfacl .
# file: .
# owner: Unknown+User
# group: Unknown+Group
user::rwx
group::r-x
other:r-x
default:user::rwx
default:group::r-x
default:other:r-x
$ icacls .
. NULL SID:(DENY)(Rc,S)
S-1-5-21-1315901005-2739448750-426064240-1000:(F)
S-1-5-21-1315901005-2739448750-426064240-513:(RX)
Tout le monde:(RX)
NULL SID:(OI)(CI)(IO)(DENY)(Rc,S)
CREATEUR PROPRIETAIRE:(OI)(CI)(IO)(F)
GROUPE CREATEUR:(OI)(CI)(IO)(RX)
Tout le monde:(OI)(CI)(IO)(RX)
When I get Security Tab for this directory,
Windows returns a popup message "Authorizations on etc unordered, some entries may be skipped"
After answering OK, a new panel is shown and as I click on Advanced Autorisations
Windows returns a message proposing to order the ACLs.
After ordering, I get :
$ icacls .
. NULL SID:(OI)(CI)(DENY)(Rc,S)
CREATEUR PROPRIETAIRE:(OI)(CI)(IO)(F)
GROUPE CREATEUR:(OI)(CI)(IO)(RX)
S-1-5-21-1315901005-2739448750-426064240-1000:(F)
S-1-5-21-1315901005-2739448750-426064240-513:(RX)
Tout le monde:(OI)(CI)(RX)
getfacl . is unchanged
I don't know which ACLs are or not skipped.
But at a moment of my application, I get a permission denied not for /etc (here an example),
but for another object with analog properties.
Today, I am obliged to return to 2.3 version to keep my application operational.
Regards
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |