Mailing-List: contact cygwin-developers-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-developers-owner AT cygwin DOT com Delivered-To: mailing list cygwin-developers AT cygwin DOT com Date: Fri, 23 Aug 2002 18:38:21 +0200 From: Corinna Vinschen To: cygwin-developers AT cygwin DOT com Subject: Re: acl_access denies access owned by 'Everyone' group Message-ID: <20020823183821.S26346@cygbert.vinschen.de> Reply-To: cygwin-developers AT cygwin DOT com Mail-Followup-To: cygwin-developers AT cygwin DOT com References: <19113724867 DOT 20020823191251 AT logos-m DOT ru> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <19113724867.20020823191251@logos-m.ru> User-Agent: Mutt/1.3.22.1i On Fri, Aug 23, 2002 at 07:12:51PM +0400, Egor Duda wrote: > Hi! > > Disclaimer: I have checked this only with cvs version, but > downloading the latest release now to verify things with it. > [...] > # owner: 1291 > # group: 0 > user::rw- > group::r-- > mask::r-- > other::--- > $ grep Everyone /etc/group > Everyone:S-1-1-0:0:duda,duda_admin That shouldn't be necessary at all. You can even drop Everyone completely from /etc/group with the current version from CVS. I don't know if it's clever to set group membership to Everyone since that's the ACL entry which is evaluated as POSIX "other". I never tried it (I didn't even have the idea to do that). Anyway, it's really wrong what you're doing. Pierre's changes eliminated the usage of Everyone as a group. In that light I'd say, yes, it's a result of Pierre's changes and it's correct. Does `id' mention Everyone in the supplementary group list? I doubt it since it's not important what is in /etc/group under NT+ntsec but it's important what is in your access token. And Everyone is filtered as a group since it is none. It's the "other" or "world" of NT. Corinna -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Developer mailto:cygwin AT cygwin DOT com Red Hat, Inc.