From 1647bf67c146d1e1d7169d1b413afb6a459b9ded Mon Sep 17 00:00:00 2001
From: Corinna Vinschen <corinna@vinschen.de>
Date: Sat, 24 Oct 2009 08:26:01 +0000
Subject: 	* fhandler.cc (fhandler_base::open): Always create file with
 default 	security descriptor and fix descriptor afterwards.  Change
 comment to 	explain why. 	* security.cc (alloc_sd): Drop setting the
 SE_DACL_PROTECTED flag. 	* wincap.cc: Remove has_dacl_protect
 throughout. 	* wincap.h: Ditto.

---
 winsup/cygwin/security.cc | 5 -----
 1 file changed, 5 deletions(-)

(limited to 'winsup/cygwin/security.cc')

diff --git a/winsup/cygwin/security.cc b/winsup/cygwin/security.cc
index c33be76c7..b8750eb8a 100644
--- a/winsup/cygwin/security.cc
+++ b/winsup/cygwin/security.cc
@@ -432,11 +432,6 @@ alloc_sd (path_conv &pc, __uid32_t uid, __gid32_t gid, int attribute,
       return NULL;
     }
 
-  /* We set the SE_DACL_PROTECTED flag here to prevent the DACL from being
-   * modified by inheritable ACEs.  This flag is available since Win2K.  */
-  if (wincap.has_dacl_protect ())
-    sd.Control |= SE_DACL_PROTECTED;
-
   /* Create owner for local security descriptor. */
   if (!SetSecurityDescriptorOwner (&sd, owner_sid, FALSE))
     {
-- 
cgit v1.2.3