On Sat, Dec 28, 2019 at 8:40 AM Jon Turney wrote:
>
>
> A new version of Setup (2.898) has been uploaded to:
>
>https://cygwin.com/setup-x86_64.exe (64 bit version)
>https://cygwin.com/setup-x86.exe (32 bit version)
Something definitely busted in this version for me. I've been using
On Wed, Jan 1, 2020 at 11:22 AM Jon Turney wrote:
>
>
> I've built setup with a patch which attempts to address this:
>
> https://cygwin.com/setup/setup-2.899.x86_64.exe
> https://cygwin.com/setup/setup-2.899.x86.exe
>
> Perhaps you could try that and see if it improves things for you?
I noticed when I launch an executable, Cygwin queries SACL information
on the executable (which I can see in Process Monitor as a
'QuerySecurityFile' operation). On some of my protected file servers,
this generates a failure audit. Looking at the source code, I'm going
to guess this might be from
Arg. Responding to myself. Apparently ALL_SECURITY_INFORMATION is
internally defined and doesn't contain the flag for SACL information
(so much for being 'ALL'). I'll keep exploring...
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Docume
I recently discovered that the Liquidware Labs Stratusphere Agent
causes random issues when launching executables through a Cygwin bash
shell. Any chance someone can add this to the BLODA list to help
others that might run into similar issues?
--
Problem reports: http://cygwin.com/problems.
4 11:43 AM, "Corinna Vinschen" wrote:
>
> Hi Bryan,
>
> On Nov 5 11:12, Bryan Berns wrote:
> > I recently discovered that the Liquidware Labs Stratusphere Agent
> > causes random issues when launching executables through a Cygwin bash
>
> What means "random i
I haven't tried Cygwin 1.7.33 yet. What would be the expectation of
sidHistory working? In the past, I've had a script to read extra SIDs
out of AD and merge them into passwd.
On Wed, Nov 5, 2014 at 11:43 AM, Corinna Vinschen
wrote:
> Hi Cygwin friends and users,
>
>
> I just released a 6th TES
One big vote for the '/etc/nsswitch.conf' idea. I think the truth of
the matter is that enterprise environments are way too dynamic (and
inconsistent) to attempt to satisfy the majority of configurations
with any particular default ordering assumption.
Another user brought up a good point about d
Finally had a chance to test out the new release, albeit in a very
limited fashion. On our multi-domain forest with SID-History enabled,
running 'ls -l' was able to lookup account names for groups and users
on files. Some ACEs had SIDs that would only be in present
SID-History and those worked as
Thanks for the reply, Andrey.
I'll take a look at the archives for February. I'm not sure how it'd
be "obvious" given that's it's just descriptive metadata for the SID,
but I'll try to educate myself before rehashing a previous discussion.
--
Problem reports: http://cygwin.com/problems.htm
I honestly haven't read up exactly how Cygwin interprets NTFS
ACL/ACEs, but I remember seeing on the mailing list that a change was
made in 1.7.35 was made to permission handling. It is preferable in
my organization that the SYSTEM account always have full control the
local file system. When usin
> That's not really a goal. The SYSTEM permissions are kind of useless
> anyway, given that SYSTEM has permissions to read and write all files
> anyway. I don't see that a rule to add SYSTEM permissions to all files
> accomplishes anything which isn't already available anyway.
I don't think this
> You just have to enable the SeBackupName and SeRestoreName privs.
> Try in Cygwin. It does that automatically.
>
> For cases where you need to stick to the Windows ACLs, use noacl
> mounts.
Understood --- I can probably set SeBackupPrivilege /
SeRestorePrivilege as 'RequiredPriveleges' for the
> That's an administrator account, not SYSTEM.
The BERNS-WINDOWS$ is the account the process was being run under
(launched via psexec -i -s) and is indeed the system account. I ran
icacls just to display the current ACL on the directory (which does
not include the system account for the purpose o
>> Crucial vote starting... now.
Given my original post, I'm obviously fan of ignoring SYSTEM
(S-1-5-18) explicitly. As much as the absolutist programmer in me
doesn't like nuanced exceptions like this, I think it's the pragmatic
thing to do.
--
Problem reports: http://cygwin.com/problems.
"Guaranteed" might be a strong word - especially given the lack of a
guarantor; probably depends on whether the programmer has had to
workaround any nuances in the Cygwin library that may have changed in
later versions. I think the library function exports have been the
same for awhile and I've pe
I finally am moving my user community to Cygwin 1.7.35 at work and
having some issues with ssh not thinking user's ssh keys are owned by
the user. I indeed can see that their directory listings do not show
their userid as having read,write, or execute to *any* of their files.
In short, just wante
Andrey,
Sorry for not being more clear -- yes, I had read the FAQ on SSH. I
was taking the problem up a level to the more obvious weirdness
demonstrated by the resultant files on a simple "touch". Why would
Cygwin report that 'Domain Users' --- a group not in the DACL at all
--- as being able to
I'll try to reproduce the issue on a standard NTFS volume -- although
I would image Cygwin is just decoding the same DACL that ICACLS is
returning. The other oddity is why it's not recognizing *me* as
having any permissions.
In the particular case of SSH, is there any way to make SSH ignore
these
Andrey,
>> In the particular case of SSH, is there any way to make SSH ignore
>> these permissions?
> Thanks, I laughed.
Thanks for the less-than-helpful response. A "no" would have sufficed
if that is indeed the case.
>> and obviously
>> causing us pain given the permission weirdness. Removi
> He's talking about "Administrators" the SID (group).
Interesting. Given the built-in Administrators group doesn't often
[directly] play into permissions on remote systems or cross-system
permission models, I'm not sure where he was going with that.
Regardless, I'll consider it water under the b
> Has Cygwin considered signing the installer using Sign Tool? More info:
>
> https://msdn.microsoft.com/en-us/library/windows/desktop/aa387764%28v=vs.85%29.aspx
>
> http://blog.didierstevens.com/2008/12/31/howto-add-a-digital-signature-to-executables/
>
> I believe signing it this way would
Replying to myself on this topic in case anyone else is interested.
> 2) how can I get SSH to believe the two "admin" groups on my
> files are acceptable. I'm not optimistic I'm going to get SSH to
> change it's behavior so I may need to recompile it to avoid the
> check which is obviously no
On Thu, Apr 2, 2015 at 1:47 PM, Houder wrote:
> 2015/04/02 19:13:56 ERROR 5 (0x0005) Copying File
> E:\Cygwin\home\jvdwater\.bash_history
> Access is denied.
> Waiting 30 seconds... Retrying...
> New File 689.bash_history
ROBOCOPY is very reliable and it's
>> > That means, even if SYSTEM or Administrators have full access to the
>> > file, the POSIX permssion bits will not reflect that fact. And while
>> > other users get access denied based on the mask value, SYSTEM and
>> > Administrators will never get access denied based on the mask.
>>
On Sun, Apr 12, 2015 at 3:17 PM, Corinna Vinschen
wrote:
> Hi Cygwin friends and users,
>
>
> New 2.0.0-0.3 test release. It's supposed to fix the pty chmod problem
> reported in https://cygwin.com/ml/cygwin/2015-04/msg00240.html
>
Just a note: In 2.0.0-0.2, creating a file using touch on the ro
> On Apr 12 17:19, Bryan Berns wrote:
>> On Sun, Apr 12, 2015 at 3:17 PM, Corinna Vinschen
>> wrote:
>>
>> V:\>icacls touch-from-3
>> touch-from-3 DOMAIN\Administrator:(R,W,D,WDAC,WO)
>> DOMAIN\Domain Users:(R)
>> Everyo
Based on some rudimentary performance tests, it would appear that
Cygwin may repeatedly try to lookup information on a SID form an ACE
if cannot find a corresponding account which will undoubtedly
occur for orphaned SIDs. If the volume being read is remote, this can
result in some massive slow
On Tue, Apr 14, 2015 at 4:00 AM, Corinna Vinschen
wrote:
>
> Orphaned SIDs shouldn't happen. Disabling accounts, ok, but removing
> them? I don't know. So the question is, if there's no account with
> these SIDs anymore, why aren't these SIDs removed from the ACLs?
> It's not only Cygwin. Thes
On Tue, Apr 14, 2015 at 4:00 AM, Corinna Vinschen
>
> The problem is that Cygwin, or any other tool trying to resolve SIDs
> doesn't know a SID won't resolve before it tried. And then it's an
> OS function which takes its time. It's like checking for network
> machines providing shares. Sometime
On Tue, Apr 14, 2015 at 10:53 AM, Corinna Vinschen
wrote:
> On Apr 14 07:24, Bryan Berns wrote:
>> On Tue, Apr 14, 2015 at 4:00 AM, Corinna Vinschen
>> >
>> > The problem is that Cygwin, or any other tool trying to resolve SIDs
>> > doesn't know a SID won&
On Tue, Apr 14, 2015 at 2:23 PM, Corinna Vinschen
wrote:
> On Apr 14 12:44, Bryan Berns wrote:
>> On Tue, Apr 14, 2015 at 10:53 AM, Corinna Vinschen
>> wrote:
>> > On Apr 14 07:24, Bryan Berns wrote:
>> >> For example, I create a whole bunch of files (like 50
On Wed, Apr 15, 2015 at 3:29 AM, Corinna Vinschen
wrote:
>
> Not off the top of my head. The mechanism doesn't check for the
> content so it should cache the above line the same way as any other.
> I'm puzzled about this behaviour myself.
>
> That requires some debugging but I have other stuff on
On Thu, Apr 16, 2015 at 10:17 AM, Jim Reisert AD1C
wrote:
> I am unable to start Cywin/X X-server 1.17.1 with this version.
> Previous releases of 2.0.0.x were OK. I had to revert to 1.7.35-1 for
> the time being.
>
> Other than updating to 2.0.0.5, I also installed the April 2015 "Patch
> Tuesda
On Fri, Apr 17, 2015 at 6:07 AM, Corinna Vinschen
wrote:
> On Apr 17 10:16, Corinna Vinschen wrote:
>> On Apr 16 12:53, Bryan Berns wrote:
>> > On Thu, Apr 16, 2015 at 10:17 AM, Jim Reisert AD1C
>> > wrote:
>> > > I am unable to start Cywin/X X-server 1.
On Wed, Apr 15, 2015 at 1:52 PM, Saurabh T wrote:
> Hi,
> Running
> "tasklist /m file.dll" hangs in Cygwin even though it works perfectly
> fine in the cmd window. Is there any reason for this? I am using a
> somewhat older cygwin (1.7.25) on a Windows 7 box, and do not want to
> upgrade unless n
Did the fix for my Unknown user/group caching make it over from
2.0.0-0.7 (previous change note below)?
- Fix a bug in SID handling which may result in broken SID info in
passwd/group entries of unknown accounts.
--
Problem reports: http://cygwin.com/problems.html
FAQ:
On Wed, May 13, 2015 at 2:40 PM, Kunz, Christopher L wrote:
> After updating to the latest Cygwin distribution, I can no longer connect to
> X server. When I run startxwin (on a fresh Cygwin install), I get the
> following errors:
>
> xinit: giving up
> xinit: unable to connect to X server: Conn
On Tue, Jun 16, 2015 at 9:27 AM, Kertz, Denis (D)** CTR **
wrote:
> We need to run some Excel programs via cron and are using vbscript to do
> this. We have this running on a WinXP machine but are having trouble running
> on a Win7 machine, but we don't think it is a Win7 problem.
>
> Here's th
On Wed, Aug 26, 2015 at 8:23 AM, Andrey Repin wrote:
> Greetings, Corinna Vinschen!
>
>> On Aug 26 12:56, Helmut Karlowski wrote:
>>> > > Guess that's better than to stick with the kludges, migration to 10 is
>>> > > on the way.
>>> > From what I've seen and heard W10, while mostly stable, still c
On Mon, Aug 31, 2015 at 11:39 PM, E. Winston wrote:
> Hi all,
>
> I am running cygwin 2.2.1(0.289/5/3) and OpenSSH_7.1p1, OpenSSL 1.0.2d 9 Jul
> 2015 on a domain joined Windows 2012 R2 server. I am not using /etc/passwd or
> /etc/group and I would prefer not to use theses files as I anticipate a
> Could be an accidental regression in my cygwin-specific patches betweenthe
> two versions. But I don't normally use or test on text-mounts, so
> I'll need confirmation that you are indeed experiencing the problem only
>
For what it's worth, I recently had the similar issues with Cygwin tar
on t
> In fact I see _two_ raw SIDs when I look at the security tab for any
> directory in the old cygwin tree: one has Full control, and the other
> just Read & execute.
>
If everyone else's posts don't get you where you want, I have a
recently-written program that can do a search/replace on a SID (or
43 matches
Mail list logo
