X-Recipient: archive-cygwin AT delorie DOT com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:date:from:to:cc:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; q=dns; s= default; b=NLJARoC7Fy29goxcH2b6w2pUr0OEtPrB7i8si30ctoYhImfF/vT25 kuVSmv3ModQOyQoeqSPzUm9u+JrVwjteXEhj4LhxRVBPillV++GODNY2rWBjSybc pDw8hetq1h4iu7f6qUd7OTsHAuId9rXjwz1wD02KuFOYXFhh0D2Uss= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:date:from:to:cc:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; s=default; bh=bUYK6Wo3SDSkvyNolOTo8/2R/XU=; b=pmX3c6YMJg0avq2ie6cx2WDrYAFb XxEWuqPcvJ+twIVM4ZBc2+vhBcqlLNKGyw0C4smPJqkyaA9icb7ii+J063pzfH8w Kc7dmeqGpXejwHq3gQuh3s2egLtZSzimGwOoPe/uIX29qE8iCcsPf66WiFCxK8Zh Mgb9CqLcH3SCk1A= Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Authentication-Results: sourceware.org; auth=none X-Spam-SWARE-Status: No, score=-102.4 required=5.0 tests=AWL,BAYES_00,GOOD_FROM_CORINNA_CYGWIN,RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1 spammy=HTo:D*jp, H*F:D*cygwin.com X-HELO: mout.kundenserver.de Date: Fri, 8 Mar 2019 16:56:35 +0100 From: Corinna Vinschen To: Takashi Yano Cc: cygwin AT cygwin DOT com Subject: Re: Logging-in using ssh elevates the user privilege. Message-ID: <20190308155635.GP3785@calimero.vinschen.de> Reply-To: cygwin AT cygwin DOT com Mail-Followup-To: Takashi Yano , cygwin AT cygwin DOT com References: <20190307010000 DOT fc28b73739c2dd66e609982b AT nifty DOT ne DOT jp> <381052629 DOT 20190307141955 AT yandex DOT ru> <51233666 DOT 20190307182445 AT yandex DOT ru> <20190308230138 DOT b7f6b5ac90c9a14cde2647c1 AT nifty DOT ne DOT jp> <20190308141118 DOT GM3785 AT calimero DOT vinschen DOT de> <20190309003908 DOT 52b91dd113d07f9ee1025d4c AT nifty DOT ne DOT jp> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="Y46ssxGX9/CNNfN6" Content-Disposition: inline In-Reply-To: <20190309003908.52b91dd113d07f9ee1025d4c@nifty.ne.jp> User-Agent: Mutt/1.11.3 (2019-02-01) --Y46ssxGX9/CNNfN6 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mar 9 00:39, Takashi Yano wrote: > Hi Corinna, >=20 > On Fri, 8 Mar 2019 15:11:18 +0100 Corinna Vinschen wrote: > > setsockopt (sock, SOL_SOCKET, SO_PEERCRED, NULL, 0); > > before calling accept or connect. >=20 > I added this to the test code but it failed as: >=20 > Server: Created. > Server: Binded. > Server: Listened. > Client: Created. > Client: Connected. > Client: Written. > accept: Software caused connection abort >=20 > Of course, setsockopt() was added also before connect(). >=20 > So, I moved the setsockopt() from just before accept() > to just before listen(), then it succeeded. >=20 > Server: Created. > Server: Binded. > Server: Listened. > Client: Created. > Client: Connected. > Client: Written. > Server: Accepted. > 10: 1234567890 > Server: Read. >=20 > Does this affect to listen() as well? No, listen isn't affected. Corinna --=20 Corinna Vinschen Cygwin Maintainer --Y46ssxGX9/CNNfN6 Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEoVYPmneWZnwT6kwF9TYGna5ET6AFAlyCkLMACgkQ9TYGna5E T6CawA//ZGBTEDiYkGa7824zgpVItaUfLWy+0YkIpQdA8E6cgZjDtWttkilaF9Y0 orqC23PTldyGIF3Mdt96CJ1d15fu/aU9QY/CDFLhXAjEVwjeor5TRLmXPgZY0hUu w73zl8VsyPQoTcbFhHyOcq7+hcSEydCfLtfG+D3LEfAKHaiSSb729BBN3wbUPGFR 0lTobiNoL4502/PCI4O6aVJkvsSyQDGaD0cvZTjVLawVw4NpsDJC8oTAM2BsNN8N WqRf2ggpqQnjWAKgibjMfo9w0FJg+dzU8w2HPGxYAmfjQZNFU7Islzz6GvSqLlMK Ip2KVv7RZ5V6rN/FOC+s0rLMJP9qIxGnpfsAu3OBQZukIhzV1y6c7qkAtPlHy8JS QRLp3EZNGKm7X+nUqFICGSL0w+e/wcD8d7bgAdE7kPFBLVF4Jr334jZoZ6L9YxiE AaYs/kwcjFEpIeS2u+rV+/xsreifiKZyITktGSch9CoiBt1hPingdQ8AUcSTL1q4 Pck5ecv9JnnNPRvMjt8StGczUmm/NCvVSxmAlnemiJw0UI/EoKYHkkLM5aJ8NgLa 9Vhg/MxbuMku4e9kbhyy4kPS3LQpCOe4jttiS65vb1za6gsrhS7zzX9QbomUP5OY 4q0xOvFdEGVGTXd5IqHCET3f5E0Ij/a1IeQCphkyRd6E7xQE++k= =yO91 -----END PGP SIGNATURE----- --Y46ssxGX9/CNNfN6--