Re: Logging-in using ssh elevates the user privilege.
- Date: Thu, 7 Mar 2019 19:08:05 +0900
- From: Takashi Yano <takashi.yano@xxxxxxxxxxx>
- Subject: Re: Logging-in using ssh elevates the user privilege.
On Wed, 6 Mar 2019 17:17:31 +0100 Corinna Vinschen wrote:
> > This is by design, and this is no new behaviour. As soon as an admin
> > account logs in, seteuid uses the elevated token. Cygwin is doing that
> > since 2015.
> Actually, since 2010.
> > After all, from an ssh session there would be *no* chance to run
> > administrative tasks if the user would only get a non-elevated token.
> > There's no way to switch to the elevated token from an ssh session.
I understood. It seems better to remove administrator privileges
from users who are normally used, even under UAC feature.
Takashi Yano <takashi.yano@xxxxxxxxxxx>
Problem reports: http://cygwin.com/problems.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple