The eternal uid issue
Corinna Vinschen
corinna-cygwin@cygwin.com
Mon Jul 28 09:14:00 GMT 2014
On Jul 28 10:07, D. Boland wrote:
> Corinna Vinschen wrote:
> > On Jul 24 23:42, D. Boland wrote:
> > > [...]
> > > If I have Sendmail running in preferred mode (main program as
> > > cyg_server, children running as 'smmsp', removed from admin group),
> > > stat returns the wrong mode (rwxrwxrwx). As a consequence, Sendmail
> > > refuses to deliver email.
> >
> > That shouldn't happen. Unless your home dir is on FAT or FAT32
> > and you're using the wrong umask. For a start, can you try this:
> >
> > Login as user smmsp twice, once with admin privs, once without.
> > [...]
>
> Here's the output I get on the terminal:
>
> [...]
> $ strace -o /tmp/stat.trace stat /home/daniel/
> File: `/home/daniel/'
> Size: 0 Blocks: 0 IO Block: 65536 directory
> Device: e82f1393h/3895399315d Inode: 1970324836993607 Links: 1
> Access: (0755/drwxr-xr-x) Uid: ( 1003/ daniel) Gid: ( 513/ None)
> Access: 2014-07-28 09:40:47.976156800 +0200
> Modify: 2014-07-17 11:40:03.095408000 +0200
> Change: 2014-07-17 11:40:03.095408000 +0200
> Birth: 2014-05-22 17:00:44.538505600 +0200
> [...]
> $ strace -o /tmp/stat.trace.admin stat /home/daniel/
> File: `/home/daniel/'
> Size: 0 Blocks: 0 IO Block: 65536 directory
> Device: e82f1393h/3895399315d Inode: 1970324836993607 Links: 1
> Access: (0755/drwxr-xr-x) Uid: ( 1003/ daniel) Gid: ( 513/ None)
> Access: 2014-07-28 09:53:19.596934400 +0200
> Modify: 2014-07-17 11:40:03.095408000 +0200
> Change: 2014-07-17 11:40:03.095408000 +0200
> Birth: 2014-05-22 17:00:44.538505600 +0200
The permissions are the same in both cases, 0755. This doesn't help us,
unfortunately.
Still, are you using setuid method 1 or another method? Is your home
dir the default /home/$USER as created from inside the Cygwin
environment? Any chance your home dir has an unusual ACL?
Did you set up sshd as service? If not, you might consider to do that
so you can check what happens when switching to the smmsp account. Run
ssh-host-config as admin, install the service. Create an authorized_keys
file for the smmsp user (run ssh-user-config under smmsp for instance),
then start the service. Now login to the smmsp user account using
public key authentication, admin-enabled vs. non-admin as above(*), and
observe the permissions ls or stat show you for your home dir. Are they
really different? If so, let's see the strace output again.
Corinna
(*) Note that an ssh login to an admin account will always provide you
with an admin-enabled user token, not an UAC-disabled one.
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Maintainer cygwin AT cygwin DOT com
Red Hat
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://cygwin.com/pipermail/cygwin/attachments/20140728/96181562/attachment.sig>
More information about the Cygwin
mailing list