Mailing-List: contact cygwin-developers-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-developers-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin-developers/>
List-Post: <mailto:cygwin-developers AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-developers-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-developers-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin-developers AT sources DOT redhat DOT com
Date: Mon, 6 Aug 2001 19:11:34 +0200
From: Corinna Vinschen <vinschen AT redhat DOT com>
To: cygwin-developers AT sources DOT redhat DOT com
Subject: Re: Silly ACL problems [Was: Re: Problems with autoconf-2.52 testsuite using current CVS Cygwin]
Message-ID: <20010806191134.G23782@cygbert.vinschen.de>
Reply-To: cygdev <cygwin-developers AT cygwin DOT com>
Mail-Followup-To: Corinna Vinschen <vinschen AT redhat DOT com>,
	cygwin-developers AT sources DOT redhat DOT com
References: <3B64C0A9 DOT 1080700 AT ece DOT gatech DOT edu> <3B64F567 DOT 6060304 AT ece DOT gatech DOT edu> <3B65835C DOT 9000001 AT ece DOT gatech DOT edu> <3B65A2B8 DOT 90702 AT ece DOT gatech DOT edu> <3B66CC47 DOT 8040704 AT ece DOT gatech DOT edu> <3B6711C9 DOT 6050700 AT ece DOT gatech DOT edu> <3B6C3A4F DOT 3070502 AT ece DOT gatech DOT edu> <3B6D9D32 DOT 1050600 AT ece DOT gatech DOT edu> <3B6DB7E6 DOT 2080507 AT ece DOT gatech DOT edu> <3B6EC5C0 DOT 75D0910A AT ece DOT gatech DOT edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i

On Mon, Aug 06, 2001 at 12:28:48PM -0400, Charles Wilson wrote:
> cygwin: create_token() needs to set a default DACL of some sort, that is
> a little more open than rwx------.  (This only affects the *default*
> DACL.  If perms/ACL are *specified*, then of course the "default" has no
> effect.)

I have just discussed that with Chris. I think the best way is to
set the default DACL right before the `CreateFile' call so that
`CreateFile' creates the file with exactly the requested permissions
instead of first calling `CreateFile' with default DACL and then call
`set_file_attributes' which overwrites the files ACL. This practice
is actually the reason for the SYSTEM ACE in any file created with
the latest Cygwin from CVS since SYSTEM is always an entry in the
default DACL by, uhm, default.

> setup.exe: dirs(files?) created by setup.exe should have a DACL that
> allows full access to everyone.  If users want to lock things down
> tighter after the fact, they 
> can, I suppose.

Sure. That's what I suggest. NT/W2K creates the files according
to the inheritance attributes in the parent directory or - if
no inheritance is given - by using the default DACL in the process
token (simplified spoken).

> Two problems: I dunno how to do this, and they're taking my computer
> away in a couple of hours...so I can't help with this in the near
> future.  :-(

I will try to get the default DACL changed in setup this week.
I don't know how much time I have to change fhandler_base::open
to do the other trick, though.

However, sometimes it would be nice if somebody could have a look
into the NT security stuff, too. I'm feeling lonely at the ntsec
cutting edge. Except for Kazuhiro who unfortunately doesn't write
to this list as often as a few months ago...

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin AT cygwin DOT com
Red Hat, Inc.