Re: Problem with READ-ONLY access
From: Jean-Paul F. Otin (jpfo@mitre.org)
Date: 01/08/03
- Next message: Arron Pitman: "restoring PDC after a complete disaster - REGREST.EXE"
- Previous message: Carl Wilson: "Problem with READ-ONLY access"
- In reply to: Carl Wilson: "Problem with READ-ONLY access"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Jean-Paul F. Otin" <jpfo@mitre.org> Date: Wed, 08 Jan 2003 10:04:07 -0500
Carl,
By using the /E option, you added "user" permissions of Read to the ACL. Since you say that this
user still seems to be able to create new folders and modify files, that may mean there are other
ACEs in this ACL, like Domain Users:C, or Users:C, or Everyone:C. Check the overall security of the
D drive.
jp
-- Jean-Paul F. Otin Applied Secure Systems Engineering Internet: jpfo@mitre.org The MITRE Corporation Voice: 781 271 8331 202 Burlington Road, M/S S124 Fax: 781 271 3816 Bedford, MA 01730-1420 Carl Wilson wrote: > I am trying to set up restricted permissions for a user > that is a member of domain users group on Windows 2000 > (from the command line). D drive has read-only and a > folder on D has RW. I set this with xcacls d:\ /T /C /E /G > <user>:R. After this is applied, the user still seems to > be able to create new folders and modify files. How can he > do this if he only has read, read and execute, and list > folder contents?
- Next message: Arron Pitman: "restoring PDC after a complete disaster - REGREST.EXE"
- Previous message: Carl Wilson: "Problem with READ-ONLY access"
- In reply to: Carl Wilson: "Problem with READ-ONLY access"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
