This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: Change PS1 when run as administrator


Warren Young <wyml <at> etr-usa.com> writes:
> On Mar 15, 2016, at 2:17 PM, Achim Gratz <Stromeko <at> nexgo.de> wrote:
>> Andrey Repin writes:
>>>    test $group -eq 114 && { x="#"; break; }
>> Nope, that group membership isn't associated with real administrative
>> powers.
> Confirmed, at least on Win10 64-bit without any AD mucking things up.
> That is, I get both 114 and 544 here, so I donât need the 114 rule at all.

Opposite for me on Win7 x64 non-domain machine! 
I am always a member of 544(Administrators) group and it is my default
primary group in normal non-admin and elevated admin shells. 

In elevated admin shell, I am also a member of 114(Local account and member
of Administrators group) and 405504(High Mandatory Level) not 401408(Medium
Mandatory Level). 

No idea how this works in domains and with domain accounts, but perhaps
checking for 114 and/or 405504 would be more portable? 

$ uname -srvmo
CYGWIN_NT-6.1 2.4.1(0.293/5/3) 2016-01-24 11:26 x86_64 Cygwin

normal non-admin shell:
$ id
uid=... gid=544(Administrators)
groups=544(Administrators),197121(None),197610(HomeUsers),545(Users),
4(INTERACTIVE),66049(CONSOLE
LOGON),11(Authenticated Users),15(This Organization),113(Local
account),4095(CurrentSession),66048(LOCAL),262154(NTLM
Authentication),401408(Medium Mandatory Level)

elevated admin shell:
$ id
uid=... gid=544(Administrators)
groups=544(Administrators),197121(None),114(Local account and member of
Administrators
group),197610(HomeUsers),545(Users),4(INTERACTIVE),66049(CONSOLE
LOGON),11(Authenticated Users),15(This Organization),113(Local
account),4095(CurrentSession),66048(LOCAL),262154(NTLM
Authentication),405504(High Mandatory Level)

This is also reflected by getent group with no args.

The Windows and Cygwin groups entries are: 
Administrators:S-1-5-32-544:544:
Local account and member of Administrators group:S-1-5-114:114:
Untrusted Mandatory Level:S-1-16-0:393216:
Low Mandatory Level:S-1-16-4096:397312:
Medium Mandatory Level:S-1-16-8192:401408:
High Mandatory Level:S-1-16-12288:405504:
System Mandatory Level:S-1-16-16384:409600:

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]