Avoiding /etc/passwd and /etc/group scans
Robert Collins
rbcollins@cygwin.com
Tue Oct 22 14:36:00 GMT 2002
On Wed, 2002-10-23 at 07:31, Christopher Faylor wrote:
> On Wed, Oct 23, 2002 at 07:22:30AM +1000, Robert Collins wrote:
> >On Wed, 2002-10-23 at 07:19, Christopher Faylor wrote:
> >> >- Do the modes depend on the value of ntsec when setup is run
> >> > (e.g. inheriting from the directory)?
> >>
> >> Nope. setup isn't a cygwin app, so...
> >> cgf
> >
> >And because ntsec wasn't the default we couldn't set reasonable acls...
>
> Why would that matter? If setting reasonable acls is going to hurt the
> CYGWIN=nontsec case then that's not good either.
We need /etc/passwd and /etc/group to be filled out to understand what
nt group and user to use. Setup.exe's files by default are executable by
'everyone'.
If we can depend on a correct /etc/passwd we should be able to do
something. We will need to have a postinstall script for cygwin1.dll
that sets the permissions on cygwin1.dll, mkpasswd and mkpgroup, and
ensure that that script runs first, but that is all (off the top of my
head - may be wrong :})
Rob
--
---
GPG key available at: http://users.bigpond.net.au/robertc/keys.txt.
---
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://cygwin.com/pipermail/cygwin-developers/attachments/20021022/3701befb/attachment.sig>
More information about the Cygwin-developers
mailing list