Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
Message-ID: <010901c00265$90e45750$28a6003e@mellow>
From: "Tom Alsberg" <alsbergt AT netvision DOT net DOT il>
To: "cygwin" <cygwin AT sources DOT redhat DOT com>
References: <00c501c00258$c77d7740$28a6003e AT mellow> <3991DC91 DOT 73B7640A AT cygnus DOT com> <3991DF61 DOT 75974ABC AT cygnus DOT com>
Subject: Re: root's UID
Date: Thu, 10 Aug 2000 02:54:36 +0200
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4133.2400
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400

  Hello. Please read my comments between the quotes of the original message.

  Thanks for the reply,
  Tom Alsberg

----- Original Message -----
From: "Corinna Vinschen" <vinschen AT cygnus DOT com>
To: "Tom Alsberg" <alsbergt AT netvision DOT net DOT il>; "Cygwin Mailing List"
<cygwin AT sourceware DOT cygnus DOT com>
Sent: Thursday, August 10, 2000 12:46 AM
Subject: Re: root's UID


> > Tom Alsberg wrote:
> > >
> > >   Hi there...
> > >   I would like to ask another question - is it possible to set the
> > > administrator's UID to 0 in Cygwin? I set up a user like this:
> > >
> > >
root::500:513:,U-administrator,S-1-5-21-480600339-950411759-1606240830-500::
> > > /bin/bash
> > > ...
> > Set uid to 0. As long as you are using ntsec that's ok.

Well, on the beginning I had the problem of being logged in as 'everyone'
when I started Cygwin, but then I replaced the two lines of 'root' and
'everyone', and it got me logged in as root. Now the question arises -
doesn't that interfere with operations using the 'everyone' user? And, if
'everyone' has the UID of 0, isn't this some kind of a security leak? I
mean, wouldn't that make (in some plane and sense) everyone a superuser? I
don't understand much about Windows NT's security, but from what I recall,
in Unix/Linux, only superusers have UID 0.

> Uhmm, forgot that: ntsec _and_ the above S-1-XYZ field in pw_gecos.

Yeah, I guessed that...

> > For more information read the ntsec chapter in the online
> > documentation (http://sources.redhat.com/cygwin/docs.html).

I read it when I first downloaded Cygwin, and you're right, it is somehow
explained there, I guess I just didn't completely understand everything on
first read...



--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com