Re: ACL's Security
From: Sudeep Sachdev (sudeep_sachdev_at_yahoo.com)
Date: 11/30/04
- Next message: Joe: "Re: Audit Account Log Events"
- Previous message: sifone: "ipsec with certificates ....."
- In reply to: Glenn L: "Re: ACL's Security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 30 Nov 2004 04:36:35 -0800
"Glenn L" <the.only(delete)@gmail.com> wrote in message news:<uvWkXoq1EHA.1564@TK2MSFTNGP09.phx.gbl>...
> set them in the gui like Roger indicates, then go to DOS and run CACLS on
> the folder or file to get the 'under the hood' ACE identifyer. I think this
> is what you are looking for.
>
>
> --
> Glenn L
>
> CCNA, MCSE (2000,2003) + Security
> "Roger Abell" <mvpNOSpam@asu.edu> wrote in message
> news:OdZWX8d1EHA.1408@TK2MSFTNGP10.phx.gbl...
> >I do not understand what the problem is. These permissions
> > you mention are generic permissions, listed right there in the
> > NTFS permissions editor (if you are using the UI for this).
> >
> > --
> > Roger Abell
> >
> > "Sudeep Sachdev" <sudeep_sachdev@yahoo.com> wrote in message
> > news:c1dd9064.0411282241.1677eba6@posting.google.com...
> >> Hi
> >> I am implementing folder security through ACL's.
> >> I need ACE for two standard access rights named 'MODIFY' and 'LIST FOLDER
> > CONTENTS'.
> >
> >
Hi
Let's begin with an example .listed below are the ACE strings for
folder which gives all access rights to a folder.
#define SC_CONFIG_USER_DIR_DACL L"D:"\
L"(A;OICI;GA;;;SY)"\
L"(A;OICI;GA;;;BA)"\
L"(A;OICI;GA;;;%s)"\
"GA" -- GENERIC_ALL
"GR" -- GENERIC_READ
"GW" -- GENERIC_WRITE
"GX" -- GENERIC_EXECUTE
So i want rights for 'Modify' and 'List Folder Contents' . For this a
need the corresponding ACE.
- Next message: Joe: "Re: Audit Account Log Events"
- Previous message: sifone: "ipsec with certificates ....."
- In reply to: Glenn L: "Re: ACL's Security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
