Non-domain system's volume root shares are generally
local "users" list
folder/read data + transverse folder/execute file for
this folder, sub-folder,
and files with most user created subfolders set to
inherit those settings.
Rule of file share rights is most restrictive settings
define the effective
rights to a share. So a folder set to "full control"
for "everyone" shared as
"read+execute" for "everyone" will only allow RX.
Directory/file security works
similarly: Explicit Deny rights trumps implied or
explicit Allow rights.
Even with inherit, you can add rights for a subfolder
by simply adding the
user/group & setting their ACL's as long as the parent
does not set a Deny, or
as you have found you can disable inheritance & define
the ACL explicitly per
folder.
DHSinclair wrote:
> Wayne,
> No, no win98se machines on the LAN at all. What I
think it was that the
> "share" directories were set by default to inherit
the permissions of
> their Parent. The Parent was the hard drive and/or
partition! Once I
> dorked around with the permissions (unhook from
Parent!), the "shares"
> suddenly became usable again from my w2k machines. I
do not know if this
> an optimal solution, but it works like w2k now. I am
surprised at just
> how locked down XP appears to be!
> Best,
> Duncan
____________________________________________________________________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now.
http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
