| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| DomainKey-Signature: | a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:message-id:date:from:mime-version:to:cc | |
| :subject:references:in-reply-to:content-type | |
| :content-transfer-encoding; q=dns; s=default; b=ut3EQ2rWtz+NcviB | |
| nfRot4hJxjHbPOukFQAfuThwMCZs5zseEVK6C8yAFzvrYj7+cBGAL5NlrBUldd18 | |
| PHhPzsOxCiYfQms+V4GJDbWdm+l+4CEVM3R5EgNelOSKGHUXargWh3sbCyxKbcFI | |
| oW7XE/iUMotC8HweoyIBfRPkF18= | |
| DKIM-Signature: | v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:message-id:date:from:mime-version:to:cc | |
| :subject:references:in-reply-to:content-type | |
| :content-transfer-encoding; s=default; bh=3PhKBd5YeOC44lLKOhH6Bf | |
| kq8h0=; b=CX1fmRQkblIOFreZt6UNbhy4b14JRr/Oi/qap4EFw1e8MiFfxO3Es5 | |
| gPokVJvUrLv30lw9YnE5im0eYpwTv30S9QL91M+PXgAbK3YlArkHBMy6+sdUVgKx | |
| cUITDbfrXGcak3aBbUItAB2LKwvNfWljZ8QBs0UbLVDIHnkY0/Pj0= | |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
| Authentication-Results: | sourceware.org; auth=none |
| X-Spam-SWARE-Status: | No, score=-5.0 required=5.0 tests=AWL,BAYES_00,GIT_PATCH_2,UNSUBSCRIBE_BODY,WEIRD_QUOTING autolearn=ham version=3.3.1 spammy=HX-Languages-Length:2773, music, player, panel |
| X-HELO: | Ishtar.sc.tlinx.org |
| Message-ID: | <5C87D41E.30702@tlinx.org> |
| Date: | Tue, 12 Mar 2019 08:45:34 -0700 |
| From: | L A Walsh <cygwin AT tlinx DOT org> |
| User-Agent: | Thunderbird |
| MIME-Version: | 1.0 |
| To: | "cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com> |
| CC: | Brian DOT Inglis AT SystematicSw DOT ab DOT ca |
| Subject: | Re: win dirs don't handle lack of inherited rule(?): getfacl + tar dir Warning: Cannot acl_to_text: Invalid argument |
| References: | <5C81E2EE DOT 7020708 AT tlinx DOT org> <20190308121543 DOT GI3785 AT calimero DOT vinschen DOT de> <5C84EB7B DOT 70408 AT tlinx DOT org> <7a3eaccf-511a-b71f-7f99-45a9bef35b29 AT SystematicSw DOT ab DOT ca> |
| In-Reply-To: | <7a3eaccf-511a-b71f-7f99-45a9bef35b29@SystematicSw.ab.ca> |
| X-IsSubscribed: | yes |
On 3/10/2019 7:09 AM, Brian Inglis wrote:
> Define this sh function, run it on problematic directories or files, and reply
> with the output:
>
> # lsp - list permissions with ls, getfacl, icacls
> lsp ()
> {
> local p;
> for p in "$@";
> do
> ls --color=auto -dl "$p";
> getfacl "$p";
> icacls "$(cygpath -m ""$p"")";
> done
> }
>
> e.g. and running my cygcheck sanitizer over the output:
>
---
What is your cygcheck sanitizer? I don't think I'm familiar with it...
ok, the top directory of my Palemoon install just below the
profiles dir has the problem from tar:
tar: default.nlaw-32: Warning: Cannot acl_to_text: Invalid argument
Your script (thank you very much!), shows:
> lstp default.nlaw-32
drwxrwx---+ 1 Bliss\law Bliss\lawgroup 0 Mar 12 08:30 default.nlaw-32
# file: default.nlaw-32
# owner: Bliss\law
# group: Bliss\lawgroup
user::rwx
group::rwx
group:TrustedInstaller:rwx
group:SYSTEM:rwx
group:Bliss\Domain Admins:rwx
group:Administrators:rwx
group:lawgroup:rwx
mask::rwx
other::---
getfacl: default.nlaw-32: Invalid argument
default.nlaw-32 NULL SID:(DENY)(Rc,S,REA,WEA,X,DC)
Bliss\law:(F)
BLISS\lawgroup:(RX,W,DC)
NT SERVICE\TrustedInstaller:(RX,W,DC)
NT AUTHORITY\SYSTEM:(RX,W,DC)
BLISS\Domain Admins:(RX,W,DC)
BUILTIN\Administrators:(RX,W,DC)
Athenae\lawgroup:(RX,W,DC)
Everyone:(Rc,S,RA)
Mandatory Label\High Mandatory Level:(I)(OI)(CI)(NW)
Successfully processed 1 files; Failed processing 0 files
------
Does that give any insight into the problem?
>
> Just because Explorer does not understand those ACLs' order does not mean they
> are invalid or wrong: just not set via the Explorer interface using its simple
> approach - only Explorer is confused; that's why Explorer has an Advanced
> security pane - to set stuff Explorer can't.
>
---
??? Um...I don't think I ever use it's simple interface -- it bothers
me because it isn't literal enough (hides too much detail).
Are we doing posix acls or sun acls? I thought at one point they were
sun?
> Don't let Explorer cleanup, fix, or reorder those ACLs to avoid grief!
> Explorer dislikes a lot of what I work with, so I don't use Explorer much:
> pcmanfm works for me.
>
It doesn't -- its the advanced panel that I use for resetting. The problem
is that it isn't just Explorer. After a reinstall, I had odd permissions in
several places, so I got "can't write" errors when I tried to use a
music player
that had its database in roaming profile. I found a few oddities, like
----rwxr-x on a few directories and files. Resetting them in cygwin
didn't fix the problem -- thus I used the advanced dialog in explorer.
The errors were that it couldn't write to various databases.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |