This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: /usr/local, /var and */tmp in c:\Users\Public
- From: cyg Simple <cygsimple at gmail dot com>
- To: cygwin at cygwin dot com
- Date: Mon, 17 Nov 2014 09:36:34 -0500
- Subject: Re: /usr/local, /var and */tmp in c:\Users\Public
- Authentication-results: sourceware.org; auth=none
- References: <81578012-FD3F-4463-BC56-ADB092317DD4 at etr-usa dot com> <CABa6CEkRV=3FY6ZVGrdt--rH3PppwCJRD5poU0L2knv2k2ce_w at mail dot gmail dot com> <25F385A9-3E2D-44FC-998F-D2672F67DFE4 at etr-usa dot com> <m40npq$vrq$1 at ger dot gmane dot org> <ECD073FF-B78C-4D19-8DE1-5F4E390D2495 at etr-usa dot com> <20141113093335 dot GI2782 at calimero dot vinschen dot de> <40005E53-A327-4E4A-8C71-514E505F9FBC at etr-usa dot com> <CAD8GWstJ+BkbkCJfE_48=b2cg0uzc8pkd1UnevP6-=3DHL+Buw at mail dot gmail dot com> <546795E3 dot 4090806 at secure-endpoints dot com> <CAD8GWss-DSbSNwW6tZTa+nRWpe3LGk-GD5dr7F2Bqhymgw8VXA at mail dot gmail dot com>
On Sat, Nov 15, 2014 at 1:41 PM, Lee wrote:
> On 11/15/14, Jeffrey Altman wrote:
>> On 11/15/2014 12:55 PM, Lee wrote:
>>
>>>> So, just because I installed Cygwin with my regular user account,
>>>
>>> You're doing it wrong. Install Cygwin using an admin account and
>>> regular user accounts are not allowed write access to system
>>> files/directories:
>>
>> This feels really wrong to me. If installing Cygwin under a non-admin
>> account results in a potential security vulnerability, then the
>> installer should be taking that into account.
>
> I would argue that no, the installer should _not_ take that into
> account. If someone wants to install cygwin under their regular
> userid, why should the installer try to work around that? The files
> are installed with the "correct" permissions if the windows admin has
> an administrator account for doing admin chores & a regular user
> account for doing day to day user tasks.
Because a user who is using a corporate laptop with administrator
accounts locked down would not be able to install Cygwin.
Because a user who is used to having ownership of the files he
installs would become frustrated that he could not remove Cygwin by
simply opening the Windows explorer, picking his way to the Cygwin
root folder, right clicking it and saying Delete.
Because this list would become overrun with queries of why can't I add
a program from an archive to the /usr/bin directory or remove or ...
An install "Only for the user" should not create such locked down
control of the system without asking. Some users tend to know what to
do and what not to do and do not want the extra measures to protect
themselves.
--
cyg Simple
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
- References:
- /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public
- Re: /usr/local, /var and */tmp in c:\Users\Public