X-Recipient: archive-cygwin@delorie.com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:date:message-id:subject:from:to
	:content-type; q=dns; s=default; b=RpFk6LknsmQwLtRshijb4I5JUMlBh
	aGozF+uuNOjd4F7wqtEF6I35DmccO7VEDIvIYwWjWdgzGNfPI+NciS9OYXvsrsTl
	7PXL72xT15XogVh0FAT/HZurfUByNv0jcXTb+GsHSu5CQUsXZ5TxE7FD+e0WOnIX
	Or2T5gFeaVPlr4=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:date:message-id:subject:from:to
	:content-type; s=default; bh=1xYs5shwwnht4KLsCiUulsUXNMg=; b=Hp3
	rxLq/VVdCNJzmcfKo40yp7hqSZp/LuU1Opl1sLsOMWE+kq2vU/Nsgg0Bmflyp4Xa
	NcUuwywjmCfmmYTEoc4Ebf2zZV06B5uP3jgMCUa4jsApdNXAo9NhNG/FhmdrXi0p
	rWnr01FMskZMYm0qkQVquKCnBnE/vf1feOoEwHE4=
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=3.3 required=5.0 tests=AWL,BAYES_40,FREEMAIL_FROM,KAM_FROM_URIBL_PCCC,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=no version=3.3.2
X-HELO: mail-la0-f45.google.com
MIME-Version: 1.0
X-Received: by 10.152.115.134 with SMTP id jo6mr24260756lab.10.1427918170009; Wed, 01 Apr 2015 12:56:10 -0700 (PDT)
Date: Wed, 1 Apr 2015 15:56:09 -0400
Message-ID: <CADi7v6K6Xbz3JYB-=JC23YMCEHzhmV3sSOAtcE73ydTecbcR-Q@mail.gmail.com>
Subject: File Permissions - Yet Another Question / Clarification
From: Bryan Berns <bryan.berns@gmail.com>
To: cygwin@cygwin.com
Content-Type: text/plain; charset=UTF-8
X-IsSubscribed: yes

I finally am moving my user community to Cygwin 1.7.35 at work and
having some issues with ssh not thinking user's ssh keys are owned by
the user.  I indeed can see that their directory listings do not show
their userid as having read,write, or execute to *any* of their files.

In short, just wanted to make sure behavior like that demonstrated
below is "by design".  In particular, I find it odd that "Domain
Users" is the only entity that is listed as having permissions despite
not being in the DACL at all.  On the plus side, the startup speed is
much, much faster than before and we no longer need to worry about
maintaining our HUGE passwd and groups files.  Any thoughts are
appreciated.  I've read the ntsec page and still digesting all
information...

@ umask
77
@ whoami
bernsbj
@ touch mytestfile
@ ls -l mytestfile
----rwx---+ 1 bernsbj Domain Users 0 Apr  1 15:38 mytestfile
@ icacls mytestfile
mytestfile MYDOMAIN\bernsbj:(I)(F)
          BUILTIN\Administrators:(I)(F)
         OTHERDOMAIN\Domain Admins:(I)(F)

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple