delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin-developers/2000/06/20/21:02:13

Mailing-List: contact cygwin-developers-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-developers-subscribe AT sourceware DOT cygnus DOT com>
List-Archive: <http://sourceware.cygnus.com/ml/cygwin-developers/>
List-Post: <mailto:cygwin-developers AT sourceware DOT cygnus DOT com>
List-Help: <mailto:cygwin-developers-help AT sourceware DOT cygnus DOT com>, <http://sourceware.cygnus.com/ml/#faqs>
Sender: cygwin-developers-owner AT sourceware DOT cygnus DOT com
Delivered-To: mailing list cygwin-developers AT sourceware DOT cygnus DOT com
From: Chris Faylor <cgf AT cygnus DOT com>
Date: Tue, 20 Jun 2000 21:02:03 -0400
To: cygwin-developers AT sourceware DOT cygnus DOT com
Subject: Re: scenario: no registry access, C:\ locked out
Message-ID: <20000620210203.A11641@cygnus.com>
Reply-To: cygwin-developers AT sourceware DOT cygnus DOT com
Mail-Followup-To: cygwin-developers AT sourceware DOT cygnus DOT com
References: <003001bfdb14$fb514760$0201a8c0 AT home DOT net> <20000620202940 DOT A10791 AT cygnus DOT com> <005001bfdb1c$42c5f4e0$0201a8c0 AT home DOT net>
Mime-Version: 1.0
User-Agent: Mutt/1.2i
In-Reply-To: <005001bfdb1c$42c5f4e0$0201a8c0@home.net>; from apatrza1@rochester.rr.com on Tue, Jun 20, 2000 at 09:01:41PM -0400

On Tue, Jun 20, 2000 at 09:01:41PM -0400, Andrew Patrzalek wrote:
>System administrators are allowed to access the registry to change it, a
>non-privileged user is not.  For instance, work stations on many networks
>are locked out, for various reasons, preventing a non-privileged user from
>running regedit to alter the registry. However, another partition, say d:\,
>is allowed for use by this user for programs which don't require the
>registry for running. This is where cygwin can really shine, 32-bit
>executables, no registry needed. Programs can be compiled, tested and
>demonstrated without violating network restrictions and commitments.

Are you saying that there is a scenario where someone implements registry
security by locking out regedit but any other program (i.e., cygwin) is
able to write to the registry?  That doesn't sound like a very secure
system.

If, on the other hand, the registry is completely locked from being
written then I don't understand how cygwin comes into play. I don't
know what a partition has to to with the registry either.  Are you
saying that the disk holding the Windows directory is write-locked?

Can you give a specific example of something you'd like to see changed
in Cygwin?  Are you saying that it should not read the mount table
from the registry?  Or, that the user should not be able to write to the
mount table?  Those are the only two instances that I can think of where
cygwin normally accesses the registry.  There are a couple of other minor
cases but they are not common.

cgf

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019