Re: Write but not delete permission on a folder?

From: Salt_Peter (salt_at_peter.mtl)
Date: 09/06/03 

Date: Sat, 6 Sep 2003 00:23:38 -0400

As was stated in the previous response, ntfs permissions are inherited by
the newly created "test" folder. You need to first break the inheritence
hierarchy to redefine the ntfs permissions on the folder. In this case, if
C: is set to everyone->full control, that is the permission the test folder
will inherit unless specified otherwise. I'm not talking about share
permissions, which only apply over network connections, i'm referring to
ntfs permissions.

Also, the ntfs permissions dialog lets you modify permissions for either the
object itself (the test folder only) or the files and/or subfolders created
within. That's what the list box is for.

On the file or folder properties dialog, click the "Security" tab and the
"Advanced" button to disable inheritence via the check box at bottom of
dialog, copy over existing permissions and assign special file or folder
permissions according to your needs.

Note the drop down list box choices:

This folder, subfolders and files
This folder only
This folder and subfolders
This folder and files
Subfolders and files only
Subfolders only
Files only

Needless to say, the share permission should be set to evryone->read only
and the ntfs permission refined to admin->full control, test
folder=users->read only and subobjects=users->"whatever is appropriate".
It's a simple procedure, shouldn't be too difficult to acomplish.

"Netmasker" <netmasker@yahoo.com> wrote in message
news:bjarme$o1d$1@nic.grnet.gr...
> Thanks everyone but it didn't work!! I tried everything but it didn't work
> and I can't see what I do wrong.
> I will explain again what I want to do exactly:
> 1) Create a new folder named "test" (for example) under my hard disk c:\
> 2) I want to have full permissions on the folder "test" as I am the
> administrator
> 3) I want everybody else not to be able to delete or rename the folder
> "test"
> 4) I want everybody else to be able to read/create/rename/modify/delete
his
> subfolders and files under the folder "test".
>
> Can anyone tell me what permissions I must set on the folder "test" (as
> there are no subfolders and files created yet by my users) for:
> - the group "adminstrators"
> - the group "everyone"
> and where to apply these permissions (this folder, subfolders, files,
etc.)
>
> Thanks again
>
> "Salt_Peter" <salt@peter.mtl> wrote in message
> news:41H5b.10728$Kj.1009568@news20.bellglobal.com...
> > Steven already specified "ntfs permissions" in his post, the more
> important
> > issue here is ntfs parent/child inheritence. At the share's parent
folder,
> > ntfs permission inheritence needs to be disabled and the configured ntfs
> > permissions "copied over" in order to isolate/modify the parent folder's
> > permissions. This way the parent folder can be secured and it's
> subobjects's
> > security specified by inheritance. Basicly, you're creating a new Access
> > Control List.
> >
> > "John Hamilton" <john.hamilton97@ntlworld.com> wrote in message
> > news:DBE5b.117$0W5.90@newsfep3-gui.server.ntli.net...
> > > Don't forget that the filesystem needs to be NTFS :)
> > >
> > >
> > > John
> > >
> > > "Steven L Umbach" <sumbach@ameritech.net> wrote in message
> > > news:2Nu5b.18454$Ih1.7275052@newssrv26.news.prodigy.com...
> > > > It is possible, using advanced permissions. Give the users
> > > read/list/execute
> > > > nfs permissions for the folder. Then go into advanced permissions
and
> > > select
> > > > add. Add the group and then select apply onto. Then choose subfolder
> and
> > > > files. Check off the permissions that would be equivilant to modify.
> > Test
> > > it
> > > > out, but I believe it should work. --- Steve
> > > >
> > > >
> > > > "Netmasker" <netmasker@yahoo.com> wrote in message
> > > > news:bj5k9o$j97$1@nic.grnet.gr...
> > > > > I would like to secure a Directory (folder) in Windows 2000 (I am
> the
> > > only
> > > > > one with administrative rights) so that other users of the
computer
> > have
> > > > the
> > > > > following permissions:
> > > > > - have write permission in the Directory (create/modify/delete
files
> > and
> > > > > subdirectories in the Directory).
> > > > > - can not rename or delete this Directory that I had created for
> them.
> > > > >
> > > > > Is this possible???
> > > > > If yes, what are the permissions that I must set for my users on
> that
> > > > > particular Directory??
> > > > >
> > > > > Thanks in advance.
> > > > >
> > > > >
> > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>
>
>