su questions
Pierre A. Humblet
Pierre.Humblet@ieee.org
Fri Apr 4 22:15:00 GMT 2003
Rodrigo Serra wrote:
>
> Pierre
>
> I create a new user named init, and assigned privileges "Act as part of the
> operating system", "Create a token object", "Log on as service", and
> "Replace a process level token" and the ssh and su with no password prompt
> work!!!
>
> I not understand what happened. In the documentation of openssh mentioned
> the necessary privileges and not indicate "Create a token object" but
> indicate "Increase quotas". This privileges not exists in my Windows .net
>
> Well now setguid works in my Windows .net box.
Great. I don't think you need "Act as part of the operating system",
try removing it to increase security and let us know.
According to MS "Increase Quota" is needed for CreateProcessAsUser
<http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dllproc/base/createprocessasuser.asp>
but your box seems to be special.
Pierre
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Bug reporting: http://cygwin.com/bugs.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
More information about the Cygwin
mailing list