On Nov 2 10:56, Linda Walsh wrote: > You somewhat answered my question, indirectly. > I wasn't aware windows had a "group" security descriptor > in addition to the user-owner-creator field. > Where does it store the information?
In the security descriptor. There's no such thing as a "group security descriptor". The file's security descriptor contains all the info, including owner, group, and DACL. > It seems odd to have a Windows group field that no Windows utils > would be able to set (or view). Is the windows group field > actually used for anything? Actually it's not utilized in Windows and for that reason not made visible in the UI(*). The group field in the NTFS security descriptor is necessary to be POSIX compliant though, that's why it exists. Same goes for the primary group in access tokens. > My NT-Win knowledge is nowhere close to my *nix knowledge, but I just > didn't know of a windows-group field on files/processes, etc. I thought > it was a "pseudo-security" field that only existed in cygwin and that > cygwin somehow simulated by, perhaps, storing the info in an ACL...? Nope. > I'm not able to find a reference to a file's groupid via google, > but I may not know the correct search terms. Is there a reference > to the group field on MS's tech pages somewhere? You could start here for instance: http://msdn.microsoft.com/library/default.asp?url=/library/en-us/secauthz/security/security_descriptors.asp Corinna (*) It's utilized indirectly through the Creator Group SID (S-1-3-1), but afaik it's not used in standard Windows SDs. -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Project Co-Leader cygwin AT cygwin DOT com Red Hat -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/
