I think I figured out the problem. When processes within UWin create files, they circumvent (or don't take into account) the directory file inheritance permissions. I can cause the inheritance permissions to get reset using: icacls larch.legato.com /reset /t Is there anyway to have UWin inherit permissions after file operations? Glenn
From: [EMAIL PROTECTED]: [EMAIL PROTECTED]: Mon, 18 Aug 2008 12:37:36
-0400Subject: [uwin-users] File permissions
Hi, Is there anyway to get Uwin to *exactly* mimic the default users assigned
to newly created files in Windows? (Using UWIN-NT 4.1.0/5.2 3790 i1586 on
Windows 2003) A simple comparison of DOS and UWin exposes the problem (in both
cases logged in as local Administrator).I can't get all the default users added
to newly created files. (I can live with the special bit flags versus the Full
Control.) >From cmd prompt:echo hello > myfile R:\>cacls myfileR:\myfile
BUILTIN\Administrators:F BUILTIN\Administrators:F NT
AUTHORITY\SYSTEM:F BUILTIN\Users:R >From Uwin: echo hello > myfile2
R:\>cacls myfile2R:\myfile2 HACKMATACK\Administrator:(special access:)
READ_CONTROL
WRITE_DAC WRITE_OWNER
SYNCHRONIZE FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_READ_DATA FILE_WRITE_DATA
FILE_APPEND_DATA
FILE_READ_EA FILE_WRITE_EA
FILE_READ_ATTRIBUTES
FILE_WRITE_ATTRIBUTES BUILTIN\Administrators:(special access:)
READ_CONTROL
SYNCHRONIZE FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_READ_DATA FILE_WRITE_DATA
FILE_APPEND_DATA FILE_READ_EA
FILE_WRITE_EA
FILE_READ_ATTRIBUTES FILE_WRITE_ATTRIBUTES
Everyone:(special access:) READ_CONTROL
SYNCHRONIZE FILE_GENERIC_READ
FILE_READ_DATA FILE_READ_EA
FILE_READ_ATTRIBUTES The problem gets worse dependant on directory
inheritance properties. ***I lose the "System" User having access permission
in this case.*** Properties on my directory:
R:\nsr\index\larch.legato.com>cacls
R:\nsr\index\larch.legato.comR:\nsr\index\larch.legato.com NT
AUTHORITY\NETWORK:(OI)(CI)N
BUILTIN\Administrators:(OI)(CI)(special access:)
DELETE
READ_CONTROL
WRITE_DAC
SYNCHRONIZE
FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_GENERIC_EXECUTE
FILE_READ_DATA
FILE_WRITE_DATA
FILE_APPEND_DATA
FILE_READ_EA
FILE_WRITE_EA
FILE_EXECUTE
FILE_READ_ATTRIBUTES
FILE_WRITE_ATTRIBUTES NT
AUTHORITY\SYSTEM:(OI)(CI)R Everyone:(OI)(CI)R
>From cmd prompt:echo hello > myfile R:\nsr\index\larch.legato.com>cacls
myfileR:\nsr\index\larch.legato.com\myfile NT AUTHORITY\NETWORK:N
BUILTIN\Administrators:(special access:)
DELETE
READ_CONTROL
WRITE_DAC
SYNCHRONIZE
FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_GENERIC_EXECUT
FILE_READ_DATA
FILE_WRITE_DATA
FILE_APPEND_DATA
FILE_READ_EA
FILE_WRITE_EA
FILE_EXECUTE
FILE_READ_ATTRIBUTE
FILE_WRITE_ATTRIBUTES NT AUTHORITY\SYSTEM:R
Everyone:R >From ksh:ech hello > myfile2
R:\nsr\index\larch.legato.com>cacls
myfile2R:\nsr\index\larch.legato.com\myfile2 HACKMATACK\Administrator:(special
access:)
READ_CONTROL
WRITE_DAC
WRITE_OWNER
SYNCHRONIZE
FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_READ_DATA
FILE_WRITE_DATA
FILE_APPEND_DATA
FILE_READ_EA
FILE_WRITE_EA
FILE_READ_ATTRIBUTES
FILE_WRITE_ATTRIBUTES
BUILTIN\Administrators:(special access:)
READ_CONTROL
SYNCHRONIZE
FILE_GENERIC_READ
FILE_GENERIC_WRITE
FILE_READ_DATA
FILE_WRITE_DATA
FILE_APPEND_DATA
FILE_READ_EA
FILE_WRITE_EA
FILE_READ_ATTRIBUTES
FILE_WRITE_ATTRIBUTES Everyone:(special
access:) READ_CONTROL
SYNCHRONIZE
FILE_GENERIC_READ
FILE_READ_DATA FILE_READ_EA
FILE_READ_ATTRIBUTES Thanks,Glenn
_________________________________________________________________
_______________________________________________ uwin-users mailing list [email protected] https://mailman.research.att.com/mailman/listinfo/uwin-users
