Mailing-List: contact cygwin-developers-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-developers-owner AT cygwin DOT com Delivered-To: mailing list cygwin-developers AT cygwin DOT com Subject: Re: Avoiding /etc/passwd and /etc/group scans From: Robert Collins To: cygwin-developers AT cygwin DOT com In-Reply-To: <20021022235349.GO6429@redhat.com> References: <20021022191217 DOT GD4828 AT redhat DOT com> <3DB5AB53 DOT B434ED90 AT ieee DOT org> <20021022202004 DOT GA6995 AT redhat DOT com> <3DB5BA56 DOT A76B6463 AT ieee DOT org> <20021022211930 DOT GF6429 AT redhat DOT com> <1035321750 DOT 1455 DOT 14 DOT camel AT lifelesswks> <20021022213133 DOT GI6429 AT redhat DOT com> <1035322568 DOT 1949 DOT 20 DOT camel AT lifelesswks> <20021022214058 DOT GM6429 AT redhat DOT com> <1035322956 DOT 1447 DOT 22 DOT camel AT lifelesswks> <20021022235349 DOT GO6429 AT redhat DOT com> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-uZNVCnANGHo4+6MGsOhk" Date: 23 Oct 2002 10:20:21 +1000 Message-Id: <1035332422.7764.3.camel@lifelesswks> Mime-Version: 1.0 --=-uZNVCnANGHo4+6MGsOhk Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2002-10-23 at 09:53, Christopher Faylor wrote: > On Wed, Oct 23, 2002 at 07:42:35AM +1000, Robert Collins wrote: > >On Wed, 2002-10-23 at 07:40, Christopher Faylor wrote: > >> On Wed, Oct 23, 2002 at 07:36:08AM +1000, Robert Collins wrote: > >> >If we can depend on a correct /etc/passwd we should be able to do > >> >something. We will need to have a postinstall script for cygwin1.dll > >> >that sets the permissions on cygwin1.dll, mkpasswd and mkpgroup, and > >> >ensure that that script runs first, but that is all (off the top of m= y > >> >head - may be wrong :}) > >>=20 > >> Sounds like a catch-22 to me. How can we run anything except a .bat f= ile > >> invoking windows utilities if cygwin1.dll or any other executable may = not > >> actually be executable? > > > >Yep. Thus the .bat file to ensure that the mkpasswd and mkgroup commands > >and cygwin1.dll are executable. >=20 > One of us is missing something. *How* would you ensure that mkpasswd and > mkgroup are executable? What executable would you run? cacls.exe. IIRC that comes with NT. If I recall incorrectly, I'll need to go think a little. Rob --=20 --- GPG key available at: http://users.bigpond.net.au/robertc/keys.txt. --- --=-uZNVCnANGHo4+6MGsOhk Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9tetFI5+kQ8LJcoIRAoKsAJ9KVmkRW07vq+UYh1bA9RDdATDDUACfXhT3 hkYozOt9TzuJgGiZ6aQCGkk= =dvOl -----END PGP SIGNATURE----- --=-uZNVCnANGHo4+6MGsOhk--