This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Admin can read user file from bash, despite permissions

I have a power user file that has go-rwx.  However, the administrator
account can "less" the contents from a bash command line.  This is
both logging onto Windows 2000 as admin, as well as ssh'ing in
(loopback) from the power user log-in session.  The administrator can
also "mv" the file to a different name, but it can't create a new file
in the same folder e.g. by "cp".

CACLS shows an extensive set of permissions for the power user owner,
LaptopName\None and Everyone.  I've come across nothing on the web
(yet) about a special privilege that allows administrators the level
of access that it seems to have.  In fact, if I just open up a DOS
shell as Administrator, I cannot "more" the said file.  So it seems to
be specific to Cygwin rather than Windows.

I've read up on ntsec in the Cygwin user guide, but nothing seems to
explain the admin access to the file.  However, it is new material to
me, so I might be missing it.  If the explanation is there, could
someone point to the particular paragraph, and perhaps elaborate on
how that explains the access I observe?  If the explanation isn't
there, what is the explanation?


-- Unsubscribe info: Problem reports: Documentation: FAQ:

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]