X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:message-id:date:from:mime-version:to:subject
	:references:in-reply-to:content-type:content-transfer-encoding;
	 q=dns; s=default; b=HR1ztGx2GySh4Fcz4h/eZQlg4ONT76oRwjU5nS57TFF
	KuyjfFEh3ZeTg0RFPMo9yn6JAtcLnbhXGnH67djdKC8vQc5JE8dvmYbFKq11exLH
	hTS5Hb0mvi67o/5PFenFOvlctf6XozGRPzSOEff84Clfg4zmbPoot9s6JWmL0wl4
	=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:message-id:date:from:mime-version:to:subject
	:references:in-reply-to:content-type:content-transfer-encoding;
	 s=default; bh=CMi9flSErh1GKlp8bIce9oAzHBw=; b=sdtprUV+l9UAvyg0W
	jDF46m4A26zxu1b1FWrJpgsrj9aiATNS+noMXrhM+n5uHUJIpuRSwYorPIIMN8xj
	zsI6fqtAO+36DdEfUaC9yUetVE8/ou/JT5oXvAE0HGegqgQ5VsQ/7lDXW3r1l26x
	PzwPaydgXBMUllPzdVR56KSK3k=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=0.1 required=5.0 tests=AWL,BAYES_50,RP_MATCHES_RCVD autolearn=ham version=3.3.2
X-HELO: Ishtar.tlinx.org
Message-ID: <52D0A2E4.5040807@tlinx.org>
Date: Fri, 10 Jan 2014 17:48:20 -0800
From: Linda Walsh <cygwin AT tlinx DOT org>
User-Agent: Thunderbird
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: Windows 8 group won't respect /etc/passwd or /etc/group
References: <52CD6FF0 DOT 1010309 AT whitelancer DOT com> <20140108155850 DOT GG1336 AT calimero DOT vinschen DOT de> <52CD85EC DOT 3090108 AT whitelancer DOT com> <20140108174930 DOT GJ1336 AT calimero DOT vinschen DOT de> <52D00470 DOT 1000901 AT whitelancer DOT com>
In-Reply-To: <52D00470.1000901@whitelancer.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-IsSubscribed: yes

John Smith wrote:
> Well, actually, I take that back.  Today I'm still having the same 
> issue.  :frustrated:
> 
----
Can't say I immediately know the answer to your prob, BUT,
if you have a spare computer you could run samba as a domain server
for windows.

Then you can set your group and see a bunch of the standard groups.
I also have the cygwin-lsa.dll module in my login so it can read the
group & pw file and set membership appropriately.

I think that is necessary.

Just verified -- my non-cygwin processes have the same security token
as when I am in cygwin --

***EXCEPT*** my x64 process's, right now, don't -- they are getting default
tokens because I don't have a full x64 bit setup and don't have a 64-bit
cygwin-lsa.dll .

But on x32 cygwin, in ccygwin, I see:
  id|tr "," "\n"
uid=15013(Bliss\law) gid=10201(Bliss\lawgroup) groups=10201(Bliss\lawgroup)
544(Administrators)
545(Users)
10512(Bliss\Domain Admins)
10513(Bliss\Domain Users)
10517(Bliss\Cert Publishers)
10518(Bliss\Schema Admins)
10519(Bliss\Enterprise Admins)
10520(Bliss\Group Policy Creator Owners)
10260(Bliss\torrent)
11053(Bliss\Trusted Local Net Users)
11612288(High Mandatory Level)
-------------

My main group = my group on my linux box (as propagated by samba).

If I use Process Hacker, I can look at the security token of a non-cygwin process
and see all the Bliss tokens and the high mandatory token.

I don't see the NT_AUTHORITY\xxx tokens in cygwin -- because of a hack in
Samba that refuses to return info about those GUIDS -- if you modify samba to
return the names for those, you can see those as well.

Files I create are normally in Bliss\lawgroup in my own diectories, but in
system dirs, it may be Admin or none or trusted abuser.

TrustedInstaller has a UID as well:
TrustedInstaller:*:4294967294:4294967294:U-NT 
SERVICE\TrustedInstaller,S-1-5-80-956008885-3418522649-1831038044-1853292631-2271478464::

Note -- I have seen your number as 'TrustedInstaller' as well the 4294967295 --
so it might be that number.
It should be listed out by mkpasswd -l.

You know after you do a mkpasswd -l
and a separate mkpasswd -D , you combine them in an /etc/passwd -- same for 
/etc/group (w/mkgroup).
That way you get your stuff set whether you log in on a local or a domain account.

Also FWIW -- on my linux machine-- my files are owned by lawgroup as well.





--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple