Mailing-List: contact cygwin-developers-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-developers-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin-developers/>
List-Post: <mailto:cygwin-developers AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-developers-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-developers-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin-developers AT sources DOT redhat DOT com
Date: Sun, 5 Aug 2001 21:52:33 +0200
From: Corinna Vinschen <vinschen AT redhat DOT com>
To: cygwin-developers AT sources DOT redhat DOT com
Subject: Re: Silly ACL problems [Was: Re: Problems with autoconf-2.52 testsuite using current CVS Cygwin]
Message-ID: <20010805215233.T23782@cygbert.vinschen.de>
Reply-To: cygdev <cygwin-developers AT cygwin DOT com>
Mail-Followup-To: Corinna Vinschen <vinschen AT redhat DOT com>,
	cygwin-developers AT sources DOT redhat DOT com
References: <3B63432E DOT 6050309 AT ece DOT gatech DOT edu> <3B649305 DOT 2090302 AT ece DOT gatech DOT edu> <3B64C0A9 DOT 1080700 AT ece DOT gatech DOT edu> <3B64F567 DOT 6060304 AT ece DOT gatech DOT edu> <3B65835C DOT 9000001 AT ece DOT gatech DOT edu> <3B65A2B8 DOT 90702 AT ece DOT gatech DOT edu> <3B66CC47 DOT 8040704 AT ece DOT gatech DOT edu> <3B6711C9 DOT 6050700 AT ece DOT gatech DOT edu> <3B6C3A4F DOT 3070502 AT ece DOT gatech DOT edu> <3B6D9D32 DOT 1050600 AT ece DOT gatech DOT edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3B6D9D32.1050600@ece.gatech.edu>; from cwilson@ece.gatech.edu on Sun, Aug 05, 2001 at 03:23:30PM -0400

On Sun, Aug 05, 2001 at 03:23:30PM -0400, Charles Wilson wrote:
> Well, it looks like the script below DOES cause some problems.  I just 
> installed the new ash and binutils packages using setup.  However:  I 
> can't execute them.
> 
> Here's the ACL for /bin (prior to running setup to install the new ash)
> 
> # file: bin
> # owner: 500
> # group: 513
> user::rwx
> group::rwx
> mask::rwx
> other::r-x
> default::mask::---
> 
> After installing ash (as Administrator), the ACL for sh.exe:
> 
> # file: sh.exe
> # owner: 544
> # group: 513
> user::rwx
> group::---
> group:18:rwx
> mask::---
> other::---
> 
> I can fix this (by hand, after logging BACK in as Administrator), but 
> what went wrong?

Nothing, I think. Setup is a non-Cygwin tool so it has nothing
to do with ntsec. Since the ACL of /bin doesn't inherit it's
permissions, newly created files get a default DACL which is
identical to what you see above if your account has admin privs.

This reminds me that setting the default DACL could be a useful
extension to the create_token() code...

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin AT cygwin DOT com
Red Hat, Inc.