Re: policy
- From: "Darren" <Darren@xxxxxxxxxx>
- Date: Fri, 8 Feb 2008 15:45:10 -0500
As Marcin suggested using permsion and pehaps ABE would be the best way to
go about this..
"marcel" <marcel@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:E203DF86-5681-4375-8D21-1E798C9D34A4@xxxxxxxxxxxxxxxx
hi
I have a folder "userfiles" on the server.
in that folder I have a share "bestanden" ("files") where "z" for the
users
is.
The problem is, if a user knows the "unc", he can type this in the windows
exlorer and view and edit files of other users.
I want to prevent this but I do not know what policy or rights I have to
use...
"Marcin" wrote:
Marcel,
what exactly are you trying to accomplish? Browsing the network and
viewing
a list of shared folders are different from ability to connect to them
via
UNC path or reading their content. If you intend to prevent users from
browsing a list of shared folders and their content, create hidden shares
(by simply placing "$" character at the end of their names) and apply
Access
Based Enumeration feature - available providing that your servers are
running at Windows Server 2003 SP1 (or later). To protect their content,
take advantage of permissions (on share or NTFS level)...
hth
Marcin
.
- References:
- Re: policy
- From: Marcin
- Re: policy
- From: marcel
- Re: policy
- Prev by Date: Re: Using R2 as 2003 DCs
- Next by Date: Re: 1058 1030 and no access to \\domain\share
- Previous by thread: Re: policy
- Next by thread: Cannot delete object of unknown type in ADUC
- Index(es):
Relevant Pages
|
