X-Recipient: archive-cygwin@delorie.com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:date:from:to:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; q=dns; s= default; b=B3FJXph1eP9IIvNDeCzCQH0qq2IOLCgpULAaGSsmgCtNtQ7rE/R9D dFfa8yvHq2m4+PaUqirO5F0KAIAsHVNEtcbNpqrC/mWZYpTDQwhMYOTjD9C8a4bH 53Qx3gt1seFj5PV4JKCxfXWY94kLCfiQZzgSKVCSRu0pi4csSEDvl8= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:date:from:to:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; s=default; bh=UmnQgBHnRKnBnJzntS096dZM7I0=; b=GffC8aRv93zcmz8FIA6WjjFmb9+G /WcQqMtQQRyXhZ139p7m5puF7Uv4fzvFdhFtbLOx1mErffUfzAuG8cnEwbqruf7o Zt38hKRIYRlTloHtU8cXOpmajyyVIOP4fugASzRVdmUsT5I72NMhqW3AdUA5Dq+6 NK+AFrAvb4qZXdE= Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Delivered-To: mailing list cygwin@cygwin.com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-93.9 required=5.0 tests=BAYES_50,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_PBL,RDNS_DYNAMIC,USER_IN_WHITELIST autolearn=no version=3.3.2 spammy=mars, SID, acls, ACLs X-HELO: calimero.vinschen.de Date: Wed, 9 Mar 2016 16:58:43 +0100 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: RFC2307 accounts Message-ID: <20160309155843.GA32399@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <56DFCC21.8070506@studelec-sa.com> <56DFE973.2070406@maxrnd.com> <56DFFE26.9080705@studelec-sa.com> <20160309112750.GA14733@calimero.vinschen.de> <56E00DF7.7060406@studelec-sa.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="3V7upXqbjpZ4EhLz" Content-Disposition: inline In-Reply-To: <56E00DF7.7060406@studelec-sa.com> User-Agent: Mutt/1.5.24 (2015-08-30) --3V7upXqbjpZ4EhLz Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mar 9 12:50, Marc Rechte wrote: > Le 09/03/2016 12:27, Corinna Vinschen a =C3=A9crit : > >Keep in mind that we have two mappings. The main mapping is the mapping > >between Windows SID and a computed uid/gid value used in Cygwin which > >allows fast mapping in both directions. A computed value drops the > >requirement to access an LDAP server for the mapping, which is > >especially bad when not using AD as mapping server. > > > >Please read https://cygwin.com/cygwin-ug-net/ntsec.html#ntsec-mapping-nfs > >and https://cygwin.com/cygwin-ug-net/ntsec.html#ntsec-mapping-samba > >again. The RFC 2307 mapping only comes into play when reading meta > >information from an NFS or Samba share. The unix uid/gid values have to > >be mapped to a Windows user (better: SID) in the first place, not to the > >Cygwin uid/gid values. The actual uid/gid values are irrelevant. Worse, > >using the RFC 2307 values might collide with other, computed uid/gid > >values. > > > > > >Corinna > > >=20 > OK, I noticed that. Now it brings me a problem using rsync on cygwin. >=20 > On cygwin: > $ cat /etc/rsyncd.conf > [test] > path =3D /cygdrive/c/tmp > comment =3D zone de test > fake super =3D yes > read only =3D no >=20 > On the Linux box: > # ls -l /home/tunix/ > ... > drwxr-xr-x 3 tunix root 4096 9 mars 12:23 resto_win > -rw-rw-r--+ 1 tunix utilisateurs_du_domaine 82882 9 mars 10:56 tmp.ps >=20 > # rsync -avz --acls --delete /home rsync://192.168.0.23/test > .. > # rsync -avz --acls --delete rsync://192.168.0.23/test/home/tunix resto_w= in/ > ... > # ls -l /home/tunix/resto_win/tunix/ > ... > drwx------ 2 1050005 1049089 4096 9 mars 12:14 resto_win > -rw------- 1 1050005 1049089 82882 9 mars 10:56 tmp.ps That's an ls -ln, right? The AD user and group names should have been resolved. > You will notice that owner, group and ACLs are *not* restored properly >=20 > Am I demanding too much to cygwin ? Off the top of my head, yes. The rfc2307 uid/gid mapping only works when accessing the filesystem directly from Cygwin. By using rsync, the info is transmitted over the net. Corinna --=20 Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Maintainer cygwin AT cygwin DOT com Red Hat --3V7upXqbjpZ4EhLz Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJW4EgyAAoJEPU2Bp2uRE+g/rMP/1Go2z7Ptojat9WFXpUKqCQy joeWU27noYlU9Hd+TFMhi/LhLjJPb3Y87xDg4PL/96DVOgtI3xhkrd0Oza4vpF2e efEjSl2OSRZx82uO/vqtXH8v7NVV06s/gl/AJG9JADT7KlFIPf2Ut5T0Hpi3KkXa g1La5mM2S2hgmbvOZ3xxKVv0+tXcH7Kr+MBhNcgYVpbMGRoW36KL2yFt2SQiDY1Q sVt7Fd/x9pAB6PCG9Io9I+PS2COQ94MLas8YEO2XT6lTXSoew9LZdMMp/oKo565Q IbZJL+7+OqxYI9YSEcS9UvETrgnhT/lPVmQK2S1DfeaqZtOdr+Qn1sXmmefNGBsC fFBU+G+hJQafqsVRpICT++bivuklp2CgWtzvPPRR6Q77i56GyYchYBcbsBJWylzz +ASyJHf4gaYrhKxmBPmb9D4TxXqm5le0W20dlkvyYVAnM9s1/TF/vpd/roC6z3Vc RxQR1ANCDZfxn5RG2DevK5FAgoEq/1hxojaZ0lGaX04f9thDptE14UiB032wYzuH +culkG1l1PoZxCv3AXDgCGdswAgT5/7RIPc3pwoWEW6z3qP3pr/C67Av65gUdUXD 8DeWt41xJRBI8ZJUDb/IeqvnbxgNkiPD3ZKgNarZEKH5cITI7T1uHNZ8ikP7c3kY aBCwKVeLIxCpaOAB1t8a =yukm -----END PGP SIGNATURE----- --3V7upXqbjpZ4EhLz--