Just migrating from a Novell server over to NT...

It used to be that I could only have directories that were visible to certain users - ie if they don't know its there, it won't get them inquisitive. Now "shares" are visible to all but access might be denied, or not as permissions seem to come from the top level. So try making a toplevel folder RO and try allowing a user the ability to create/erase etc in a folder further down - no chance

The people who designed the so-called file security in NT didn't really think it through - did they?

Doh!

 

Theres always a way Puff

 

You can give RO access to one directory, and RW access to one further down the tree.

What you can't do is give someone greater access than they gain from the share - ie if the share only allows RO access, the user can never get RW access to files/directories they access through that share.

 

Yeah! Don't give the buggers access to anything

 

putting a $ on the end of the share name hides it

e.g. ****$ would be invisible

 

We always make user's home folder shares invisible with the $ trick. Only company wide shares get shown to all.

 

Puff - also look at cacls.exe on Nt4 & xcacls.exe on Win2k....

just re-read your first post-
**thought you were after a permissions "changer" for multiple files/folders**
ah, well I'll leave my original bit there might be useful for those that havn't heard of the exe

shunty

[Edited by shunty - 5/16/2002 1:31:57 PM]

 

In the dim and distant past I used to admin a novell network. We were just starting to play with NT when I moved away towards specialising in the network side.

I certainly always felt setting permissions was harder, far les intuitive and more prone to accidently leaving access open than Novell. But had assumed it was 'cos I hadn't spent enough time learing the NT way.

Nice to know I'm not alone