Mailing-List: contact cygwin-developers-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-developers-subscribe AT sourceware DOT cygnus DOT com>
List-Archive: <http://sourceware.cygnus.com/ml/cygwin-developers/>
List-Post: <mailto:cygwin-developers AT sourceware DOT cygnus DOT com>
List-Help: <mailto:cygwin-developers-help AT sourceware DOT cygnus DOT com>, <http://sourceware.cygnus.com/ml/#faqs>
Sender: cygwin-developers-owner AT sourceware DOT cygnus DOT com
Delivered-To: mailing list cygwin-developers AT sourceware DOT cygnus DOT com
To: cygwin-developers AT sourceware DOT cygnus DOT com
Subject: ntsec
Mime-Version: 1.0 (generated by tm-edit 7.106)
Content-Type: text/plain; charset=US-ASCII
From: Kazuhiro Fujieda <fujieda AT jaist DOT ac DOT jp>
Date: 19 Dec 1999 12:04:36 +0900
Message-ID: <s1sso0ziqbf.fsf@jaist.ac.jp>
Lines: 19
X-Mailer: Gnus v5.3/Emacs 19.34

Hi Corinna, 
I wish ntsec preserves access control entries of a file or a
directory unrelated to its owner nor group, in order to preserve
ACEs about System, Administrators, and so on.

For example, if the ACL of a directory gives full control rights
of Administrators and System, I want files created in the
directory inherit these rights properly.

In the current implementation of ntsec, however, the ACL of the
file only has rights of the owner and the primary group, and the
right of Administrators only to change the owner.

If it is difficult to implement this feature, I think you can
use security APIs only supported by NT 4.0 or later.
____
  | AIST      Kazuhiro Fujieda <fujieda AT jaist DOT ac DOT jp>
  | HOKURIKU  School of Information Science
o_/ 1990      Japan Advanced Institute of Science and Technology