X-Recipient: archive-cygwin@delorie.com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:to:from:subject:date:message-id:references :mime-version:content-type:content-transfer-encoding; q=dns; s= default; b=kKlaamUWV/Bn2W0GaOLkAHf3fagTZSYY5BH1ItrAqo+M9j2TH0Zaf Sw5fNuonUBI5w1Nc5sdYZFDOs0pCPu87fr5MyfU71/Tjcf1ttXG1a7dMC6GNTF5B yCA2fkY1NtTLHMyIoQXkYN/UOYzRCfcUO6XolfBERZnaTeElQDQLlg= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:to:from:subject:date:message-id:references :mime-version:content-type:content-transfer-encoding; s=default; bh=Xso9uIqJaSsbLZMDv8YjRYNn7EE=; b=NKvt++huaSvs6vHd+H8mWNf0YBYu fEgqaz3NCBLqJyyc9qWV9vZuDCu2U9z8jn7HEGMX7BBJZIUQu7JtnHbXB0m+4Dot FYNUYoOOtmQR1N6YUSD/kwATZN+qnPNxAtnSNToP3+5xK25Ex9vCXXFgWaBo+BRc bghbii+u89/FXbM= Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Delivered-To: mailing list cygwin@cygwin.com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-1.8 required=5.0 tests=AWL,BAYES_00,RCVD_IN_DNSWL_LOW,RP_MATCHES_RCVD,SPF_HELO_PASS,SPF_PASS autolearn=ham version=3.3.2 X-HELO: plane.gmane.org To: cygwin@cygwin.com From: "D. Boland" Subject: Re: The eternal uid issue Date: Thu, 31 Jul 2014 14:53:05 +0200 Lines: 31 Message-ID: <53DA3C31.3ACB14DF@boland.nl> References: <20140723152357.GA24446@calimero.vinschen.de> <53D0AD3A.1FDF0B3F@boland.nl> <20140724135222.GD12212@calimero.vinschen.de> <53D17DCD.726524E0@boland.nl> <20140725124200.GC8725@calimero.vinschen.de> <53D604BC.1CBD4557@boland.nl> <20140728091409.GA25860@calimero.vinschen.de> <53D6373A.193E3E47@boland.nl> <20140728115308.GA11725@calimero.vinschen.de> <53D7A371.BB5912EB@boland.nl> <20140730131047.GL25860@calimero.vinschen.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-IsSubscribed: yes Corinna Vinschen wrote: > > On Jul 29 15:36, D. Boland wrote: > > Corinna Vinschen wrote: > > > The permissions of the home folder are set to 01777 by default (S_ISVTX > > > bit!). Since we can't rely on central administration for Cygwin, this > > > allows a user to create her own homedir automatically at first start of > > > a Cygwin shell. > > > > > > You might consider to disable this full patch check in sendmail for > > > Cygwin. Is there some configuration flag, maybe? > > > > > > > If I make the 'Users' group owner of the /home folder and remove the world-writable > > bit, Sendmail doesn't complain anymore. I found out that everybody who is logged on, > > will be put in the 'Users' group anyway. > > Uhm... that works for you, but you can't rely on that for a sendmail > package. You'd have to deal with the default 01777 /home as well. Yes, yes, I know. Cygwin shouldn't want to lock their users out of their own system. Sendmail is a real b&^ch with security. This project cost me 2 1/2 weeks straight, trying to figure out a way to accomodate its strict impersonation rules on a system which has multiple root users. But I did it. No hacking in the sendmail source code. Anyway, today I tested it succesfully on my Win7 machine (32bit Cygwin), but no complaining from Sendmail, even with a home folder which is group- and world writable. Strange. Cincerely, Daniel -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple