Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Wed, 11 Sep 2002 09:59:05 +0200 From: Corinna Vinschen To: cygwin AT cygwin DOT com Subject: Re: accessing shared drives when logged in via ssh Message-ID: <20020911095905.M1574@cygbert.vinschen.de> Reply-To: cygwin AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com References: <3D7E319B DOT 296C74E0 AT verizon DOT net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.22.1i On Tue, Sep 10, 2002 at 11:45:58AM -0700, Scott Evans wrote: > > This is really a good thing. Basically, the sshd daemon can not switch > > user contexts within the domain without a password. If that weren't the > > case, a user with only local Admin rights could use ssh to become _any > > user_ in the domain without ever providing a password for that user! > > I guess this is where things get a little funny -- Windows has a "domain > administrator" while unix only has root on individual machines. > > In my case, I'm running on a workgroup and the shares on other machines > are shared to *everyone*. So it seems like I should indeed be able to get > to them, regardless of who I am. Everyone is not everyone :-) There's a difference between shares which allow anonymous access and shares which allow access to every authenticated user. The latter are demanding password authentication and therefore are not open to processes under a non-password context switch. Of course I don't know which of them are used in your environment. Corinna -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Developer mailto:cygwin AT cygwin DOT com Red Hat, Inc. -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/