Mailing-List: contact cygwin-developers-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-developers-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin-developers/>
List-Post: <mailto:cygwin-developers AT cygwin DOT com>
List-Help: <mailto:cygwin-developers-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-developers-owner AT cygwin DOT com
Delivered-To: mailing list cygwin-developers AT cygwin DOT com
Date: Wed, 17 Jul 2002 08:17:05 -0400
From: Jason Tishler <jason AT tishler DOT net>
Subject: Re: Corinna or Pierre please comment? [jason AT tishler DOT net: Re: setuid()
 problem when disconnected from PDC under 1.3.12-2]
In-reply-to: <20020716191735.GB1692@tishler.net>
To: "Pierre A. Humblet" <Pierre DOT Humblet AT ieee DOT org>,
   cygwin-developers AT cygwin DOT com
Mail-followup-to: "Pierre A. Humblet" <Pierre DOT Humblet AT ieee DOT org>,
 cygwin-developers AT cygwin DOT com
Message-id: <20020717121704.GA1260@tishler.net>
MIME-version: 1.0
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7BIT
Content-disposition: inline
User-Agent: Mutt/1.4i
References: <20020715155951 DOT GG2372 AT tishler DOT net>
 <20020713165415 DOT GB30143 AT redhat DOT com> <20020715110733 DOT B6932 AT cygbert DOT vinschen DOT de>
 <20020715125051 DOT GC2372 AT tishler DOT net> <20020715145826 DOT H6932 AT cygbert DOT vinschen DOT de>
 <20020715155951 DOT GG2372 AT tishler DOT net>
 <3 DOT 0 DOT 5 DOT 32 DOT 20020715162535 DOT 0080c900 AT mail DOT attbi DOT com>
 <20020716191735 DOT GB1692 AT tishler DOT net>

On Tue, Jul 16, 2002 at 03:17:35PM -0400, Jason Tishler wrote:
> On Mon, Jul 15, 2002 at 04:25:35PM -0400, Pierre A. Humblet wrote:
> > Jason, can you telnet into the machine as a domain user when
> > disconnected from the PDC for a long time? If so are the groups (from
> > id) the same as when you are connected (working with an /etc/group
> > that includes the domain groups)? (just curious).
> 
> I was thinking of trying the above experiment myself.  I will disconnect
> before I leave work today and try first thing tomorrow.  I will report
> back then.

After being disconnected for about 14 hours, I ran id under the
following conditions:

    1. bash
    2. telnet
    3. ssh with password exchange

All of the above cases, returned identical results:

    $ id
    uid=19695(jt) gid=10513(Domain Users) groups=0(Everyone),544(Administrators),545(Users),10513(Domain Users)

So, it appears that I can get my domain group(s) from the cached
credentials even after being disconnected from my PDC for a "long" time
when I logon with a password.  Where do we go from here?

Thanks,
Jason