Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Date: Wed, 11 Sep 2002 09:59:05 +0200
From: Corinna Vinschen <corinna-cygwin AT cygwin DOT com>
To: cygwin AT cygwin DOT com
Subject: Re: accessing shared drives when logged in via ssh
Message-ID: <20020911095905.M1574@cygbert.vinschen.de>
Reply-To: cygwin AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
References: <3D7E319B DOT 296C74E0 AT verizon DOT net> <Pine DOT LNX DOT 4 DOT 44 DOT 0209101143170 DOT 980-100000 AT oontz DOT dissonant DOT org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Pine.LNX.4.44.0209101143170.980-100000@oontz.dissonant.org>
User-Agent: Mutt/1.3.22.1i

On Tue, Sep 10, 2002 at 11:45:58AM -0700, Scott Evans wrote:
> > This is really a good thing.  Basically, the sshd daemon can not switch
> > user contexts within the domain without a password.  If that weren't the
> > case, a user with only local Admin rights could use ssh to become _any
> > user_ in the domain without ever providing a password for that user!
> 
> I guess this is where things get a little funny -- Windows has a "domain 
> administrator" while unix only has root on individual machines.
> 
> In my case, I'm running on a workgroup and the shares on other machines 
> are shared to *everyone*.  So it seems like I should indeed be able to get 
> to them, regardless of who I am.

Everyone is not everyone :-)

There's a difference between shares which allow anonymous access and
shares which allow access to every authenticated user.  The latter
are demanding password authentication and therefore are not open to
processes under a non-password context switch.  Of course I don't know
which of them are used in your environment.

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin AT cygwin DOT com
Red Hat, Inc.

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/