X-Recipient: archive-cygwin AT delorie DOT com
X-Spam-Check-By: sourceware.org
Message-ID: <47C9CE74.39293530@dessent.net>
Date: Sat, 01 Mar 2008 13:45:24 -0800
From: Brian Dessent <brian AT dessent DOT net>
X-Mailer: Mozilla 4.79 [en] (Windows NT 5.0; U)
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: full control for non owner and resulting 'cp' created file perms
References: <200803012102 DOT m21L276p016693 AT tigris DOT pounder DOT sol DOT net>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-IsSubscribed: yes
Reply-To: cygwin AT cygwin DOT com
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Tom Rodman wrote:

> The file "zam" below has slightly unusual windows permissions -
> it does not inherit from it's parent dir, the owner of the
> file has no ACES, another user "staffuser1" has full control.

Is staffuser1 an administrator?  Cygwin opens files using the 'backup'
privilege in order to emulate the POSIX semantics that root can access
any file regardless of permissions.  But of course the backup privilege
requires the user to be an administrator so there's no real privilege
leak, since an administrator can always take ownership of the object and
set an arbitrary dacl.

This started with 1.5.22:
<http://cygwin.com/ml/cygwin-announce/2006-11/msg00034.html>

Brian

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/