Re: Remove ownership

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: "Joe Richards [MVP]" <humorexpress@xxxxxxxxxxx>
Date: Thu, 31 May 2007 17:00:01 -0400

Actually no, when the object is written, the privilege is enabled and the original owner is written right with the rest of the Security Descriptor when the object (file, ad object, reg entry, whatever) is created. At no point, unless the backup system is poorly written should the person doing the restore be the owner, you want that to be as atomic as possible or else if there was a failure between the recreation of the object and the updating of the owner it would be set incorrectly.

Now you can take that permission and do extra things with it, like for instance, set a specific owner in the SD on an object that already exists.

--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net

---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm

Paul Bergson [MVP-DS] wrote:

But it does hold security info. So once restore is complete all the ntfs permissions are back including the ownership. So during the initial creation the restore must be the owner and then this special permission you spoke of comes along and looks at the file/folder and restores the original ownership.

This is very cool if I understand you correctly.

References:
- Remove ownership
  - From: Rob Nicholson
- Re: Remove ownership
  - From: Paul Bergson [MVP-DS]
- Re: Remove ownership
  - From: Rob Nicholson
- Re: Remove ownership
  - From: Paul Bergson [MVP-DS]
- Re: Remove ownership
  - From: Joe Richards [MVP]
- Re: Remove ownership
  - From: Paul Bergson [MVP-DS]
- Re: Remove ownership
  - From: Joe Richards [MVP]
- Re: Remove ownership
  - From: Paul Bergson [MVP-DS]
- Re: Remove ownership
  - From: Joe Richards [MVP]
- Re: Remove ownership
  - From: Paul Bergson [MVP-DS]

Prev by Date: AD Domain Member workstation connections reported by netstat
Next by Date: Re: Role based permissions
Previous by thread: Re: Remove ownership
Next by thread: Re: password prompt to be changed
Index(es):
- Date
- Thread

Relevant Pages

Re: sales@mrpinball.com.au Warning letter about doing backglass with direct ink.
... If he wants to restore HIS game, and HIS game only, I see no law violation. ... If he wants to restore someone else's backglass, and collect a fee, he needs ... specific permission from Gottlieb, LLC? ... Just because you do not like the owner of art (and you may have ...
(rec.games.pinball)
Re: Tag Transfer
... it is their policy to only speak to the registered owner and to only tranfer ... confirm the original owner dell happily replaced the video card (well after ... Anyway to cut a long story short I eventiually recived the Tag transfer ...
(alt.sys.pc-clone.dell)
New owner charging tenant for 13yr old carpets.
... the original owner decided to sell the ... The new owner, who had never once seen the residence until ... the carpet was in poor condition. ...
(misc.legal)
Re: Restrictive Covenant preveting objection
... > When my property was sold by the original owner, ... > to oppose planning permission" in respect of this retained land. ... IANAL but I do recall from reading that 'negative' restrictive covenants ...
(uk.legal)
Re: "new" computer
... You don't want to get in trouble because the original owner may have filled the hard drive with kiddie porn, or have problems because the original owner downloaded/installed viruses or other malware. ... They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. ...
(microsoft.public.windowsxp.help_and_support)