Web lists-archives.com

Re: Logging-in using ssh elevates the user privilege.




Hi Corinna,

On Wed, 6 Mar 2019 17:17:31 +0100 Corinna Vinschen wrote:
> > This is by design, and this is no new behaviour.  As soon as an admin
> > account logs in, seteuid uses the elevated token.  Cygwin is doing that
> > since 2015.
> 
> Actually, since 2010.
> 
> > After all, from an ssh session there would be *no* chance to run
> > administrative tasks if the user would only get a non-elevated token.
> > There's no way to switch to the elevated token from an ssh session.

I understood. It seems better to remove administrator privileges
from users who are normally used, even under UAC feature.

-- 
Takashi Yano <takashi.yano@xxxxxxxxxxx>

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple