Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
X-Originating-IP: [216.135.220.54]
From: "Karl M" <karlm30 AT hotmail DOT com>
To: cygwin AT cygwin DOT com
Subject: Re: [IMPORTANT]: New code in Cygwin 1.3.2 allowing to change user context without password
Date: Tue, 29 May 2001 11:16:31 -0700
Mime-Version: 1.0
Content-Type: text/plain; format=flowed
Message-ID: <F39C8aH5qRFapNuT1FM00008b01@hotmail.com>
X-OriginalArrivalTime: 29 May 2001 18:16:31.0285 (UTC) FILETIME=[7C6A2650:01C0E86B]

Hi Corinna...

So if sshd has a username/password then I get my full authenticated access 
to the network drives. (?)

Thanks,

Also...any thoughts on my (sometimes) cygrunsrv timeout problem?

...Karl

>From: Corinna Vinschen <cygwin AT cygwin DOT com>
>To: cygwin AT cygwin DOT com
>Subject: Re: [IMPORTANT]: New code in Cygwin 1.3.2 allowing to change user 
>context without password
>Date: Tue, 29 May 2001 16:13:57 +0200
>
>On Tue, May 29, 2001 at 06:47:44AM -0700, Karl M wrote:
> > Hi Corinna...
> >
> > I guess I just wanted to make sure that tokens constructed with a 
>password
> > would be available in the future as well.
>
>An error in the 1.3.2 code prevents that it always works. Actually
>the explicitely given token should be used when it's available and
>the token's user SID is equal to the SID in the /etc/passwd entry
>of the uid, given as parameter to seteuid().
>
>Hmm, sounds somewhat complicated.
>
>In other words:
>
>- sshd creates a user token from username/password.
>- The uid of that user is 1234 in /etc/passwd.
>- sshd calls seteuid(1234).
>
>What happens in seteuid()?
>
>- seteuid() looks into /etc/passwd for uid 1234.
>- It extracts the SID from that entry.
>- is a token already available?
>   - No -> create a new one.
>   - Yes -> is that SID == the token's SID?
>     - No -> create a new one.
>     - Yes -> use the already available token.
>
>That _should_ happen but it only happens in the current developers
>version of Cygwin, not in 1.3.2.
>
>However, in 1.3.2 it probably works if the primary group of the
>user in /etc/passwd is the same as the primary group in Windows
>(always "None" on standalone systems) and the /etc/group entry of
>that group contains the correct SID. Check it out.
>
>Corinna
>
>--
>Corinna Vinschen                  Please, send mails regarding Cygwin to
>Cygwin Developer                                mailto:cygwin AT cygwin DOT com
>Red Hat, Inc.
>
>--
>Want to unsubscribe from this list?
>Check out: http://cygwin.com/ml/#unsubscribe-simple
>

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com


--
Want to unsubscribe from this list?
Check out: http://cygwin.com/ml/#unsubscribe-simple