This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: Windows 8 group won't respect /etc/passwd or /etc/group


John Smith wrote:
Well, actually, I take that back. Today I'm still having the same issue. :frustrated:

----
Can't say I immediately know the answer to your prob, BUT,
if you have a spare computer you could run samba as a domain server
for windows.

Then you can set your group and see a bunch of the standard groups.
I also have the cygwin-lsa.dll module in my login so it can read the
group & pw file and set membership appropriately.

I think that is necessary.

Just verified -- my non-cygwin processes have the same security token
as when I am in cygwin --

***EXCEPT*** my x64 process's, right now, don't -- they are getting default
tokens because I don't have a full x64 bit setup and don't have a 64-bit
cygwin-lsa.dll .

But on x32 cygwin, in ccygwin, I see:
 id|tr "," "\n"
uid=15013(Bliss\law) gid=10201(Bliss\lawgroup) groups=10201(Bliss\lawgroup)
544(Administrators)
545(Users)
10512(Bliss\Domain Admins)
10513(Bliss\Domain Users)
10517(Bliss\Cert Publishers)
10518(Bliss\Schema Admins)
10519(Bliss\Enterprise Admins)
10520(Bliss\Group Policy Creator Owners)
10260(Bliss\torrent)
11053(Bliss\Trusted Local Net Users)
11612288(High Mandatory Level)
-------------

My main group = my group on my linux box (as propagated by samba).

If I use Process Hacker, I can look at the security token of a non-cygwin process
and see all the Bliss tokens and the high mandatory token.

I don't see the NT_AUTHORITY\xxx tokens in cygwin -- because of a hack in
Samba that refuses to return info about those GUIDS -- if you modify samba to
return the names for those, you can see those as well.

Files I create are normally in Bliss\lawgroup in my own diectories, but in
system dirs, it may be Admin or none or trusted abuser.

TrustedInstaller has a UID as well:
TrustedInstaller:*:4294967294:4294967294:U-NT SERVICE\TrustedInstaller,S-1-5-80-956008885-3418522649-1831038044-1853292631-2271478464::

Note -- I have seen your number as 'TrustedInstaller' as well the 4294967295 --
so it might be that number.
It should be listed out by mkpasswd -l.

You know after you do a mkpasswd -l
and a separate mkpasswd -D , you combine them in an /etc/passwd -- same for /etc/group (w/mkgroup).
That way you get your stuff set whether you log in on a local or a domain account.

Also FWIW -- on my linux machine-- my files are owned by lawgroup as well.





--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]