Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Mon, 15 Sep 2003 19:14:38 +0200 From: Corinna Vinschen To: Cygwin List Subject: Re: ntsec: changing the everyone user Message-ID: <20030915171438.GK9981@cygbert.vinschen.de> Reply-To: cygwin AT cygwin DOT com Mail-Followup-To: Cygwin List References: <5 DOT 1 DOT 0 DOT 14 DOT 0 DOT 20030915104435 DOT 027cf828 AT 127 DOT 0 DOT 0 DOT 1> <04ce01c37ba7$5b1e67a0$a500000a AT chrismob> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <04ce01c37ba7$5b1e67a0$a500000a@chrismob> User-Agent: Mutt/1.4.1i On Mon, Sep 15, 2003 at 05:35:20PM +0100, Chris Rodgers wrote: > OK. Here is an example of the way permissions leak out to "Everyone". I > create a new file, with no permissions granted to "other". Cygwin shows this > to have worked OK. Yet in actual fact there is an ACL there giving Everyone > some access rights. I usually choose not to have "Everyone" authorised to do > anything on my Windows NT/2000 boxes, using Authorised Users instead. This > way, without a valid login, you cannot get any information, including > usernames and ACLs. > > How can I stop cygwin setting these ACLs? Did you have a close look to the access rights granted to everyone? Otherwise, just don't use ntsec. Corinna > [...] > Everyone:(special access:) > READ_CONTROL > FILE_READ_EA > FILE_READ_ATTRIBUTES -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Developer mailto:cygwin AT cygwin DOT com Red Hat, Inc. -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/