Re: "Write-once" directory permissions

From: Rosanne (93g2aah02_at_REMOVEsneakemail.com)
Date: 09/29/03 

Date: Mon, 29 Sep 2003 02:20:14 GMT

In article <uoX0Q4ihDHA.3208@TK2MSFTNGP11.phx.gbl>, mvpNOSpam@asu.edu
says...
> Rosanne,
>
> If the "big guns" were effectively using what W2k/W2k3 is
> capable of, then they could/would deligate to you these tasks
> (and the power needed to accomplish them).
> This can be done without their "giving away the house"
> In fact, this ability to delegate is one of the significant features
> added to address shortcomings of NT4, which forced sysadms
> to have to play man-in-the-middle for everything - overloading
> them and slowing everyone else.
>
>
This is not terribly unusual. I don't foresee them ever actually
delegating that ability to users, though. On another network I work
with, they've taken away our ability to change our workspace via user
profiles, citing it as a security risk. I can't use my calendar for
appointments, because they're lost when I log out. I think the .normal
file is read-only at the user level. And one size does NOT fit all when
it comes to the desktop icons - they've left out little things I use
daily - like MSWord. So now I run a batchfile to dump the particular
icons I need to my desktop. Every time I log in. I shake my head every
time I do it - running a mini-PROGRAM is safer than letting MS do what
it was DESIGNED to do?

Sigh... I ranted for the first six months or so, then got tired.

~ R
p.s. Don't tell them about the batchfiles, or we'll all have a raging
case of carpal tunnel. Some of those apps are in sub-sub-sub-sub-
folders, and I would have to dig them out EVERY DAY.