Re: sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Tim Daneliuk
Igor Peshansky wrote: On Thu, 23 Feb 2006, Tim Daneliuk wrote: Igor Peshansky wrote: On Thu, 23 Feb 2006, Tim Daneliuk wrote: Same reason -- Cygwin isn't really ACL-aware. You can also restore the original ACLs by running something like "getfacl hosts.allow | setfacl -f - hosts.allo

Re: sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Igor Peshansky
On Thu, 23 Feb 2006, Tim Daneliuk wrote: > Igor Peshansky wrote: > > > On Thu, 23 Feb 2006, Tim Daneliuk wrote: > > > > > > Same reason -- Cygwin isn't really ACL-aware. You can also restore > > the original ACLs by running something like "getfacl hosts.allow | > > setfacl -f - hosts.allow.orig"

Re: sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Tim Daneliuk
Igor Peshansky wrote: On Thu, 23 Feb 2006, Tim Daneliuk wrote: Same reason -- Cygwin isn't really ACL-aware. You can also restore the original ACLs by running something like "getfacl hosts.allow | setfacl -f - hosts.allow.orig" (assuming the owner stays the same). -rwx--+ 1 tundra

Re: sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Eric Blake
> > Cygwin isn't ACL-aware, and file creation operations don't retain the > original ACLs -- Cygwin constructs them anew to reflect the permission > mapping. See . > To make sure you keep the ACLs, use an editor that edits files in-place, >

Re: sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Igor Peshansky
On Thu, 23 Feb 2006, Igor Peshansky wrote: > Cygwin isn't ACL-aware... To be more precise, Cygwin doesn't support ACL APIs for files beyond what Windows provides (and those are really outside of Cygwin). Cygwin obviously has to be aware of ACLs to construct them for the POSIX permission mapping.

Re: sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Igor Peshansky
On Thu, 23 Feb 2006, Tim Daneliuk wrote: > Is anyone familiar with alternate access methods as they apply to > cygwin? If I edit /etc/hosts.allow, the alternate access method > (indicated by a '+' in an 'ls -l' listing) gets lost. Thereafter > /etc/hosts.allow is no longer properly observed by ssh

sshd, /etc/hosts.allow, & Alternate Access Methods

2006-02-23 Thread Tim Daneliuk
Is anyone familiar with alternate access methods as they apply to cygwin? If I edit /etc/hosts.allow, the alternate access method (indicated by a '+' in an 'ls -l' listing) gets lost. Thereafter /etc/hosts.allow is no longer properly observed by sshd - it makes ssh logins impossible from anything