On Mon, Nov 10, 2003 at 03:26:07PM -0700, Brian Cruikshank wrote:
>  I have tried putting
> the everyone group on the Local Security policies for "Create a token
> object", "Logon as service", and "Replace a process level token".  The
> problem still happens.

URGH!  Don't do this.  Remove the Everyone group from these rights
again.  The easiest way is to follow the ssh-host-config script in
creating a special account:

  net user cron_server <passwd> /add /yes
  net localgroup <administrators_group_name> cron_server /add
  editrights -a SeAssignPrimaryTokenPrivilege -u cron_server
  editrights -a SeCreateTokenPrivilege -u cron_server
  editrights -a SeIncreaseQuotaPrivilege -u cron_server
  editrights -a SeServiceLogonRight -u cron_server
  mkpasswd -l -u cron_server >> /etc/passwd

For security reasons:
  editrights -a SeDenyInteractiveLogonRight -u cron_server
  editrights -a SeDenyNetworkLogonRight -u cron_server
  editrights -a SeDenyRemoteInteractiveLogonRight -u cron_server

And then create a cron service using that account:
  cygrunsrv -I cron -p /usr/sbin/cron -a -D -u cron_server -w <passwd>

> By the way, I see reference to a cron README file that should have been in
> the install.  I cannot find it anywhere yet.  Did it get lost in the new
> releases or is it hiding somewhere other than /usr/doc?



Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:[EMAIL PROTECTED]
Red Hat, Inc.

Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Reply via email to