Mailing-List: contact cygwin-announce-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-announce-subscribe AT sourceware DOT cygnus DOT com>
List-Archive: <http://sourceware.cygnus.com/ml/cygwin-announce/>
List-Post: <mailto:cygwin-announce AT sourceware DOT cygnus DOT com>
List-Help: <mailto:cygwin-announce-help AT sourceware DOT cygnus DOT com>, <http://sourceware.cygnus.com/ml/#faqs>
Sender: cygwin-announce-owner AT sourceware DOT cygnus DOT com
Delivered-To: mailing list cygwin-announce AT sourceware DOT cygnus DOT com
Delivered-To: moderator for cygwin-announce AT sourceware DOT cygnus DOT com
Message-ID: <3922B089.CCCC0AE3@vinschen.de>
Date: Wed, 17 May 2000 16:45:29 +0200
From: Corinna Vinschen <corinna AT vinschen DOT de>
Organization: Cygnus Solutions, a Red Hat Company
X-Mailer: Mozilla 4.7 [en] (X11; I; Linux 2.2.14 i686)
X-Accept-Language: de, en
MIME-Version: 1.0
To: cygann <cygwin-announce AT sourceware DOT cygnus DOT com>
Subject: New package `login' in latest
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

I have uploaded a version of `login' ported to
Cygwin version 1.1.1 to sourceware.cygnus.com.
You will find it in latest/login, named

	login-1.2.tar.gz
	login-1.2-src.tar.gz

Description:
============

This is the actual port of `login(1)' to work under Cygwin 1.1.1
with eg. telnetd(8).

It's patched to allow login of domain users.
Setting CYGWIN=ntsec is mandatory for that feature.

/etc/passwd and /etc/group have to be created so that
they contain the SIDs of the users and groups. The
new mkpasswd and mkgroup tools since cygwin V1.1.0
create the files that way by default.

Change /etc/passwd either so:

    Change the pw_name field so that it contains the nt-domain
    and the nt-username separated by a backslash:

    domain\user::1104:513:John Doe,S-1-5-21-...

    Disadvantage: You can't see the username in calls to `ls -l'
    anymore because ls shortens the name to 8 characters. Moreover
    you will have to use this long form (domain\user) on the command
    line, eg. in calls to chown(1).

or so:

    The pw_gecos field may contain an additional field, that
    beginns with (upper case!) "U-", followed by the domain
    and the username separated by a backslash.
    CAUTION: The SID _must_ remain the _last_ field in pw_gecos!!!
    BTW: The field separator in pw_gecos is the comma.
    The username in pw_name itself may be any nice name:

    domuser::1104:513:John Doe,U-domain\user,S-1-5-21-...

    Now you may use `domuser' as your login name with telnet!!!
    This is possible additionally for local users, if you don't like
    your NT login name ;-) You only have to leave out the domain:

    locuser::1104:513:John Doe,U-user,S-1-5-21-...

    Disadvantage: No other field in pw_gecos may begin with "U-".


Corinna Vinschen <vinschen AT cygnus DOT com>
Cygwin Developer
Cygnus Solutions, a Red Hat Company