Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sourceware DOT cygnus DOT com>
List-Archive: <http://sourceware.cygnus.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sourceware DOT cygnus DOT com>
List-Help: <mailto:cygwin-help AT sourceware DOT cygnus DOT com>, <http://sourceware.cygnus.com/ml/#faqs>
Sender: cygwin-owner AT sourceware DOT cygnus DOT com
Delivered-To: mailing list cygwin AT sourceware DOT cygnus DOT com
Message-ID: <387A5716.5C379188@vinschen.de>
Date: Mon, 10 Jan 2000 23:03:02 +0100
From: Corinna Vinschen <corinna AT vinschen DOT de>
X-Mailer: Mozilla 4.7 [en] (WinNT; I)
X-Accept-Language: de,en
MIME-Version: 1.0
To: Egor Duda <deo AT logos-m DOT ru>
CC: john AT thinman DOT com, Chris Faylor <cgf AT cygnus DOT com>,
        cygwin AT sourceware DOT cygnus DOT com
Subject: Re: SSH 1 Server and the Passwd file
References: <20000110160317 DOT A10917 AT cygnus DOT com> <1015 DOT 000111 AT logos-m DOT ru>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Egor Duda wrote:
> [...]
> I've thought about this problem some time ago. I'm using Corinna's port
> of cron, and it uses encrypted versions of clear-text windows passwords.
> It's better than nothing, but not very secure. As microsoft docs
> state, it's still possible to start process in other security context
> without supplying clear-text password, but it requires custom "local
> security authority" (LSA) to be written. Maybe i'll try to write one
> and implement something similar to md5 passwords. And then it could be
> possible to port setuid programs like cron and sudo in more unix-like
> way.

I would be very glad, if I then could use it for the cron
implementation, too. I'm not very lucky with the current 
encryption method :-(

Corinna


--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com