delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2016/06/29/20:04:11

X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:from:to:subject:date:message-id:references
:in-reply-to:content-type:content-id:content-transfer-encoding
:mime-version; q=dns; s=default; b=fbxmeD+BrtuVF4/Ds02rHyGDv8O2l
2tLQgEoY8iLD1lzwaldBqAppLP8WzKGvEGnWGtv9Yf95nqHVRS+bE4zdIiYJArRZ
+/47FubwYQ2+SgkRGolTj+HIyLZPb+h++BN+v2cxWYN9FuA1MLRWK3tyO2LSSNv4
evwdVAiciLs/+U=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:from:to:subject:date:message-id:references
:in-reply-to:content-type:content-id:content-transfer-encoding
:mime-version; s=default; bh=RCbyQfHY49vZrdgst0PY7qMCzqA=; b=rv+
RWQ6bTH8ypoEnyCX97FktJFZv87xvZpzRcKs0kvvfd6J493lVdTDqJCDuZr/SpIR
xzzcTlrnmQJuMhrlObWdFaUgNyycM5+lkUuA/1g4K/C0pu1TUjs7gRBJrmLSyCMU
hZm+oDRfGaL4R+Ndtpja4ZNBuHy8cw4r0s46jI94=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=1.3 required=5.0 tests=AWL,BAYES_00,CYGWIN_OWNER_BODY,MIME_BASE64_BLANKS,RCVD_IN_DNSWL_NONE,SPF_HELO_PASS,SPF_PASS autolearn=no version=3.3.2 spammy=felt, admins
X-HELO: na01-bn1-obe.outbound.protection.outlook.com
From: Bill Zissimopoulos <billziss AT navimatics DOT com>
To: "cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com>
Subject: Re: POSIX permission mapping and NULL SIDs
Date: Thu, 30 Jun 2016 00:03:36 +0000
Message-ID: <D399AB76.98B7%billziss@navimatics.com>
References: <D392BA70.95D4%billziss AT navimatics DOT com> <20160624195144 DOT GB27089 AT calimero DOT vinschen DOT de> <D392F074.962E%billziss AT navimatics DOT com> <20160624215948 DOT GD27089 AT calimero DOT vinschen DOT de> <D39583E5.96E3%billziss AT navimatics DOT com> <1945820393 DOT 20160627122324 AT yandex DOT ru> <20160627102614 DOT GA8258 AT calimero DOT vinschen DOT de> <D396C16E.9770%billziss AT navimatics DOT com> <20160628102705 DOT GA22797 AT calimero DOT vinschen DOT de> <D3980824.9862%billziss AT navimatics DOT com> <20160629082129 DOT GC981 AT calimero DOT vinschen DOT de>
In-Reply-To: <20160629082129.GC981@calimero.vinschen.de>
authentication-results: spf=none (sender IP is ) smtp.mailfrom=billziss AT navimatics DOT com;
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-office365-filtering-correlation-id: 0960a9a2-9081-4a76-c9a2-08d3a079fc50
x-microsoft-exchange-diagnostics: 1;CY1PR07MB2199;6:7gw9YMQBNW8oQ44vig9q5Bbitr2kZiUVklbzpUtMPkZm02hiyIMuM+XE8QdwZwZEgDw0Zft12yrG3BOUg7dFJxggveiHKtmox3lOCtPxR35wzhiv03KSq1MgJzw0WRD07qRAwybMfUIFoNTJQBX0i8xH1MPOY/UT3TiReIO/1xgguDjHRDyiBjvyS9pLSj8xmPRmceqYse94nGzjvYu4Eutem1qZLFSRey0yhThlrYQFgk5TE/HoEYniy5vmgwzaSr2a504rQ96gf8dGza4Z8HnAsxBMWPzUxBohQZ4gD9GQfHOcPNG8M6h9T5N7m7C8;5:AHPFTJwKQuXq1qE0fq4GOigRiPJVtvSJGMrh6BwOGCcDhke6riA0CUYtxLvpVKPIi8H/lOm5K1/ZVdiFW5SFtYKc7wNwgzywXPdtUJRTJFV2QAjzBiFDAc0XLQslDyG1wa3BzjC8UBlXD/urqbZNSw==;24:inFV4aq9cj4eAwoO5pAFWRZm7gFuzaOBHru9rFRj+4nwvSqmd5w1dP1K82stUJZJ1s03I7IzMHtAAcW1/y8xKlneS584rkw+THJfTIuLjvw=;7:39FG9jfxMlgpVfJs+qen6EQzR3J2PDWamvH8NeELVCVFfzDxeUf9phtdO1UEXMStkbVneqodh7pO45tL0rOA3sGR+Udo+rQW/bdqdocGa94ufCt8gT1v5MKKyR0VRdkYH50LTf0GuJ3Pgkp9HHOPl5OuhdcBGVdHIfZhM2Q4SBZTf0VN9Vqtrh7EUI280cBDbHDkJZEDVuWnWMNEEsHEi0EHRYZjH4xTElIFDAvjcdKGfKqvSXKfwV/SY3FJyPyW
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:CY1PR07MB2199;
x-microsoft-antispam-prvs: <CY1PR07MB2199F0C2CC5ECCFA499FCA07BC240 AT CY1PR07MB2199 DOT namprd07 DOT prod DOT outlook DOT com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0;PCL:0;RULEID:(6040130)(601004)(2401047)(8121501046)(5005006)(10201501046)(3002001)(6041072)(6043046);SRVR:CY1PR07MB2199;BCL:0;PCL:0;RULEID:;SRVR:CY1PR07MB2199;
x-forefront-prvs: 0989A7979C
x-forefront-antispam-report: SFV:NSPM;SFS:(10019020)(6009001)(7916002)(189002)(24454002)(377454003)(199003)(66654002)(106116001)(10400500002)(107886002)(3846002)(586003)(5640700001)(110136002)(106356001)(99286002)(81166006)(450100001)(6116002)(97736004)(7736002)(7846002)(77096005)(102836003)(305945005)(5002640100001)(2501003)(1730700003)(81156014)(87936001)(8676002)(8936002)(93886004)(3660700001)(3280700002)(68736007)(36756003)(2950100001)(2900100001)(189998001)(2906002)(122556002)(11100500001)(105586002)(5890100001)(86362001)(19580395003)(19580405001)(66066001)(54356999)(76176999)(50986999)(101416001)(92566002)(2351001)(94096001);DIR:OUT;SFP:1102;SCL:1;SRVR:CY1PR07MB2199;H:CY1PR07MB2199.namprd07.prod.outlook.com;FPR:;SPF:None;PTR:InfoNoRecords;MX:1;A:1;LANG:en;
received-spf: None (protection.outlook.com: navimatics.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
MIME-Version: 1.0
X-OriginatorOrg: navimatics.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jun 2016 00:03:36.4123 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 21071be9-4f9a-413b-89ac-8353a5d2410a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR07MB2199
X-IsSubscribed: yes
X-MIME-Autoconverted: from base64 to 8bit by delorie.com id u5U045xo015658 

On 6/29/16, 1:21 AM, "Corinna Vinschen" <cygwin-owner AT cygwin DOT com on behalf
of corinna-cygwin AT cygwin DOT com> wrote:


>If that's the case, then why do you explain all these things to me?  I'm
>a bit at a loss to see the difference between me explaining things to
>you you already know vs. you explaing things to me I already know.
>Aren't we kind of on par here?

Yes, we are.

Perhaps I spoke “out of turn” as the Americans say. I am sorry if it also
felt like I was explaining things that you know.

>>In any case I will use your mapping of S-1-0-65534 <-> 65534.
>
>Thanks.  Do you want to add handling for this mapping to
>pwdgrp::fetch_account_from_windows yourself or shall I do it?  I could
>come up with a patch in the next couple of days.  I will prepare a
>developer's snapshot then, so you can immediately test if it works as
>desired.

I have already added the mapping to WinFsp-FUSE. I can look into what is
required to patch Cygwin.

>>How do we avoid name collisions?  I can easily see admins creating an
>>AD account called "nobody".
>>Shall we fake a "WinFSP" domain such that the name is "WinFSP+nobody"?
>
>Preliminary patch attached.

Ok, looks like you have patched it already. Thanks for this.

BTW, if the name is case-sensitive (strcmp) I usually use the “WinFsp”
capitalization, if it makes a difference.

Also do you foresee any situation where the “nobody” mapping might be
useful outside of WinFsp? Perhaps it would make more sense to name it
“nodomain+nobody”? Just a suggestion.

Many thanks.

Bill

- Raw text -


  webmaster     delorie software   privacy  
  Copyright 2019   by DJ Delorie     Updated Jul 2019