Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
Message-ID: <3ADD9875.3162379F@ece.gatech.edu>
Date: Wed, 18 Apr 2001 09:36:53 -0400
From: "Charles S. Wilson" <cwilson AT ece DOT gatech DOT edu>
X-Mailer: Mozilla 4.75 [en] (WinNT; U)
X-Accept-Language: en
MIME-Version: 1.0
To: Corinna Vinschen <cygwin AT cygwin DOT com>
Subject: Re: ntsec environment variable
References: <005701c0c731$71e7de80$c4332041 AT campbell> <20010417135556 DOT E12559 AT cygbert DOT vinschen DOT de> <001901c0c773$0fd99ca0$c4332041 AT campbell> <20010417214024 DOT D15962 AT cygbert DOT vinschen DOT de> <000b01c0c7d7$8ae4cb40$c4332041 AT campbell> <20010418100247 DOT K15962 AT cygbert DOT vinschen DOT de>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Corinna Vinschen wrote:
> 
> That's the point. Users only can use chown if they have the user
> right "Restore files and directories". That right is only given to
> the groups "Administrators" and "Backup Operators" by default.
> That's ...similar... to Unix systems.
> 

I'd like to point out that granting the "Restore files and directories"
right to ordinary users defeats any security provided by windows NTFS. 
That right basically gives the user the ability to defeat any
permissions restrictions -- both from within cygwin and in normal
Windows usage.

--Chuck

--
Want to unsubscribe from this list?
Check out: http://cygwin.com/ml/#unsubscribe-simple