Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Thu, 24 Jan 2002 21:57:29 +0100 From: Corinna Vinschen To: "Pierre A. Humblet" Cc: cygwin Subject: Re: security.cc: bug report, question and suggestion Message-ID: <20020124215729.J11608@cygbert.vinschen.de> Mail-Followup-To: "Pierre A. Humblet" , cygwin References: <3C4EFF65 DOT FF7BA4DE AT ieee DOT org> <20020123194126 DOT H11608 AT cygbert DOT vinschen DOT de> <3C506701 DOT A334DC8A AT ieee DOT org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3C506701.A334DC8A@ieee.org> User-Agent: Mutt/1.3.22.1i On Thu, Jan 24, 2002 at 02:56:49PM -0500, Pierre A. Humblet wrote: > Corinna Vinschen wrote: > > > However, I've just checked in a change which should create a useful > > DACL for the primary token created by DuplicateTokenEx() in the > > create_token() function. It uses the function `sec_user()' which I > > once introduced to set security attributes for CreateProcess calls, > > etc. Could you test if it now behaves as you'd expect? > > Corinna, > > It doesn't seem to do anything (see attach). What does it do for you? > I am pretty sure (used gdb) that I am running your latest code. NT4.0 Sorry but I don't see what you've tested. The patch should address your problem with the access rights of the impersonation token. Corinna -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Developer mailto:cygwin AT cygwin DOT com Red Hat, Inc. -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/