X-Recipient: archive-cygwin AT delorie DOT com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:from:to:subject:date:message-id:references :in-reply-to:content-type:content-id:content-transfer-encoding :mime-version; q=dns; s=default; b=Jvl8821XqdjWg4AF1rSXgsLHf/3AD wG4m3IAiZBJz43c+R3ldJWpl6ZzqsnUIXlbclf1UDupRbUgrfF/5hPbNLiWIIoo1 EuFVRVwYCaVaeif4IbWxfSEfB+JjiKwl15MbaeYt9Ik1JJjbso7JzD1Np3fo2KcH oRetXV/CLXzOoQ= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:from:to:subject:date:message-id:references :in-reply-to:content-type:content-id:content-transfer-encoding :mime-version; s=default; bh=gmIajQ38uF4nBjHIPEb9AGQPU0o=; b=W2y 4RmXmXHwsR+dd3BTORE6EdYTbRJTDxr0Xx+ksWYSGfvJ6XpXr5DVG8ORCN0x3262 4nXQZBnvw3UToghV9VOHjAVk0TmWaThmcEz/fX8AmK/7rkxPcHmEKzpbDfDted1+ 9EqJ0M3QNQCr8c6U6WBx+TNAdTOydMQDBus/t+O4= Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=2.1 required=5.0 tests=BAYES_00,CYGWIN_OWNER_BODY,MIME_BASE64_BLANKS,RCVD_IN_DNSWL_NONE,SPF_HELO_PASS,SPF_PASS autolearn=no version=3.3.2 spammy=contacts X-HELO: na01-by2-obe.outbound.protection.outlook.com From: Bill Zissimopoulos To: "cygwin AT cygwin DOT com" Subject: Re: POSIX permission mapping and NULL SIDs Date: Fri, 24 Jun 2016 22:31:22 +0000 Message-ID: References: <20160624195144 DOT GB27089 AT calimero DOT vinschen DOT de> <20160624215948 DOT GD27089 AT calimero DOT vinschen DOT de> In-Reply-To: <20160624215948.GD27089@calimero.vinschen.de> authentication-results: spf=none (sender IP is ) smtp.mailfrom=billziss AT navimatics DOT com; x-ms-exchange-messagesentrepresentingtype: 1 x-ms-office365-filtering-correlation-id: 0e6a482d-f5b5-4f00-dd33-08d39c7f453e x-microsoft-exchange-diagnostics: 1;CY1PR07MB2198;6:AP0LeKSYAUx2Kmu1PYqJ6Jb+tWp9+mo8XlUs4FNWLD5xeWtwMO6rP/6e4SDBfnxeEwGHCRwNNQKoII/tQE4XkFE6sTDT4lqUHVvG8GIgZfJ0gS/qjuaRMi8U0FuKaEGS7Q6aEVQRzLUTUnTAJECdFRyMjQctDN1LJh819t6nN0YENhS4k2YC38qEcHU1fe9JuJXATOCooyj0c03b4bFgJLpqlTdTJRtzuqidCxsEUhqpl3PzqDKDCOn6LgZpOrsuFjnaScwFqbfaL1eXyhCKjuNMDWwuTYCHGfYz3er4O4Hr3yJWAEShdhDTsz+vpKVW6uQ4jdibJ04rkOQ78dO6jA==;5:vkKM/6AUcWxNvyGrBW86Wq0ZPi2Cdit3N7nwRTc3WDi+XpE3t1jmtVwYkDYF9sUse7W8E5kctENCqz9imrzR4ySxPrNsTQn3ZrC4NA8jtDuwEWKUz7FkVNDVxj7RAnZakBAOJGsiUda6aVDyh/jhwQ==;24:RONxfz3EUgOi4wbKAv3NWKYBeqy+osmOj28s+zYNrGpW7DXgCGnc0h19u4fdmaCRwTnEajPcNbyLeBT0d29DDYldlFtcfvxZHEikCgpwTXc=;7:/dLGq+YtlouNvTWFkbLiioPyE1t1McToA6tz7/41/o8132juCc4pWSG/K0hb8BxFtM0UaeiSCSj7nb9sVhqrqZVD20/PGu85Eg0jtSk/P+gAtMhMvTsUTXgfcwtIMl+WvebRt9SSc5gSLWFSXkYneBZxnTjwq8RMuVq8Oxqc+RDd2fJmjnA9lEeQywW3ZWWHNg9HhxnPGqeu7Mpqd9kkiVeRyjtawSNhjxGfofbtj4s93/6zKSWvJ1UDueYdNhng84jx92ZMn/j5pXHiGJSc5g== x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:CY1PR07MB2198; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:; x-exchange-antispam-report-cfa-test: BCL:0;PCL:0;RULEID:(6040130)(601004)(2401047)(8121501046)(5005006)(10201501046)(3002001)(6041072)(6043046);SRVR:CY1PR07MB2198;BCL:0;PCL:0;RULEID:;SRVR:CY1PR07MB2198; x-forefront-prvs: 0983EAD6B2 x-forefront-antispam-report: SFV:NSPM;SFS:(10019020)(6009001)(7916002)(24454002)(189002)(377454003)(55674003)(199003)(11100500001)(110136002)(66066001)(92566002)(8676002)(7846002)(2906002)(122556002)(50986999)(77096005)(76176999)(54356999)(81156014)(450100001)(86362001)(107886002)(2501003)(19580405001)(19580395003)(68736007)(93886004)(1730700003)(7736002)(2950100001)(2900100001)(189998001)(5640700001)(97736004)(81166006)(305945005)(2351001)(10400500002)(586003)(105586002)(6116002)(102836003)(3846002)(36756003)(8936002)(3660700001)(101416001)(99286002)(106116001)(106356001)(5002640100001)(3280700002)(87936001)(94096001);DIR:OUT;SFP:1102;SCL:1;SRVR:CY1PR07MB2198;H:CY1PR07MB2199.namprd07.prod.outlook.com;FPR:;SPF:None;PTR:InfoNoRecords;MX:1;A:1;LANG:en; received-spf: None (protection.outlook.com: navimatics.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="utf-8" Content-ID: <373DF82B0BD07D44B6D2231911FA5B5B AT namprd07 DOT prod DOT outlook DOT com> MIME-Version: 1.0 X-OriginatorOrg: navimatics.com X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jun 2016 22:31:22.2566 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 21071be9-4f9a-413b-89ac-8353a5d2410a X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR07MB2198 X-IsSubscribed: yes Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by delorie.com id u5OMVleS004893 On 6/24/16, 2:59 PM, "Corinna Vinschen" wrote: >>>If you want some specific mapping we can arrange that, but it must not >> >be the NULL SID. If you know you're communicating with a Cygwin >>process, >> >what about using an arbitrary, unused SID like S-1-0-42? >> >> I am inclined to try S-1-5-7 (Anonymous). But I do not know if that is a >> bad choice for some reason or other. > >I thought about Anonymous myself when I wrote my reply to your OP. I >refrained from mentioning it because it might have some unexpected side >effect we're not aware about. Let me try this with the Anonymous SID and see what happens. In the meantime I am going to ping some contacts from my MS days to see if there are indeed unintended consequences. >Keep in mind that Interix only supported standard POSIX permission bits. >Cygwin strives to support POSIX ACLs per POSIX 1003.1e draft 17. That's >a bit more extensive. Yes, that is beginning to dawn on me now that I have taken a better look at sec_acl.cc. Bill