Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Date: Sun, 20 Jan 2002 22:25:48 +0000
Message-ID: <4872-Sun20Jan2002222548+0000-starksb@ebi.ac.uk>
X-Mailer: 21.5  (beta2) "artichoke" XEmacs Lucid (via feedmail 9-beta-7 I);
	VM 7.00 under 21.5  (beta2) "artichoke" XEmacs Lucid
From: David Starks-Browning <starksb AT ebi DOT ac DOT uk>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
To: Marcus Schwartz <mschwa04 AT tufts DOT edu>
Cc: cygwin AT cygwin DOT com
Subject: Reasonable security for remote non-administrative accounts
In-Reply-To: <000101c1a1e7$922462e0$ef984082@tufts.edu>
References: <000101c1a1e7$922462e0$ef984082 AT tufts DOT edu>

On Sunday 20 Jan 02, Marcus Schwartz writes:
> I'm trying to set up sshd so I can offer non-root accounts to people who
> I don't want to have full access to my computer.

It was my understanding that you should not expect Cygwin to be secure
enough for this, depending on how careful you need to be.  There is a
FAQ entry "How secure is Cygwin in a multi-user environment?" and the
answer is not secure.  It's an old FAQ entry, but I assume it still
applies.

Regards,
David
(Cygwin FAQ maintainer)


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/