Mailing-List: contact cygwin-developers-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-developers-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin-developers/>
List-Post: <mailto:cygwin-developers AT cygwin DOT com>
List-Help: <mailto:cygwin-developers-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-developers-owner AT cygwin DOT com
Delivered-To: mailing list cygwin-developers AT cygwin DOT com
Subject: Re: Avoiding /etc/passwd and /etc/group scans
From: Robert Collins <rbcollins AT cygwin DOT com>
To: cygwin-developers AT cygwin DOT com
In-Reply-To: <20021022235349.GO6429@redhat.com>
References: <20021022191217 DOT GD4828 AT redhat DOT com> <3DB5AB53 DOT B434ED90 AT ieee DOT org>
	<20021022202004 DOT GA6995 AT redhat DOT com> <3DB5BA56 DOT A76B6463 AT ieee DOT org>
	<20021022211930 DOT GF6429 AT redhat DOT com> <1035321750 DOT 1455 DOT 14 DOT camel AT lifelesswks>
	<20021022213133 DOT GI6429 AT redhat DOT com> <1035322568 DOT 1949 DOT 20 DOT camel AT lifelesswks>
	<20021022214058 DOT GM6429 AT redhat DOT com> <1035322956 DOT 1447 DOT 22 DOT camel AT lifelesswks> 
	<20021022235349 DOT GO6429 AT redhat DOT com>
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature";
	boundary="=-uZNVCnANGHo4+6MGsOhk"
Date: 23 Oct 2002 10:20:21 +1000
Message-Id: <1035332422.7764.3.camel@lifelesswks>
Mime-Version: 1.0


--=-uZNVCnANGHo4+6MGsOhk
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

On Wed, 2002-10-23 at 09:53, Christopher Faylor wrote:
> On Wed, Oct 23, 2002 at 07:42:35AM +1000, Robert Collins wrote:
> >On Wed, 2002-10-23 at 07:40, Christopher Faylor wrote:
> >> On Wed, Oct 23, 2002 at 07:36:08AM +1000, Robert Collins wrote:
> >> >If we can depend on a correct /etc/passwd we should be able to do
> >> >something. We will need to have a postinstall script for cygwin1.dll
> >> >that sets the permissions on cygwin1.dll, mkpasswd and mkpgroup, and
> >> >ensure that that script runs first, but that is all (off the top of m=
y
> >> >head - may be wrong :})
> >>=20
> >> Sounds like a catch-22 to me.  How can we run anything except a .bat f=
ile
> >> invoking windows utilities if cygwin1.dll or any other executable may =
not
> >> actually be executable?
> >
> >Yep. Thus the .bat file to ensure that the mkpasswd and mkgroup commands
> >and cygwin1.dll are executable.
>=20
> One of us is missing something.  *How* would you ensure that mkpasswd and
> mkgroup are executable?  What executable would you run?

cacls.exe. IIRC that comes with NT. If I recall incorrectly, I'll need
to go think a little.

Rob

--=20
---
GPG key available at: http://users.bigpond.net.au/robertc/keys.txt.
---

--=-uZNVCnANGHo4+6MGsOhk
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQA9tetFI5+kQ8LJcoIRAoKsAJ9KVmkRW07vq+UYh1bA9RDdATDDUACfXhT3
hkYozOt9TzuJgGiZ6aQCGkk=
=dvOl
-----END PGP SIGNATURE-----

--=-uZNVCnANGHo4+6MGsOhk--