On 12 Jan 2006 at 15:59, Carl Houseman wrote: > XP Home is not designed for users to be mucking around with ACLs. But you > found that out already.
I know --- overall that's part of the stupidest security decision I've ever heard of for an operating system: you take the version intended for the least clued users, the users MOST likely to run something foolish or do something imprudent, and make it essentially impossible to allow XP's wonderful protection/security machinery to help them from hurting themselves... Grumble!!! What they needed to do was NOT make all the fancy XP machinery and snapins and such available in /Home [since that would just make the average /home user's eyes glaze over... hell, it seems to make the average /pro user's eyes glaze over..:o)], but rather deliver a system "pretuned" to be safe [cf, for example, almost any modern Linux distro or Mac OS X], together with some "cute" tools to make handling the necessary exceptions simpler. > CACLS is definitely not the preferred choice for changing ACLs via the > command line. The preferred choice is FILEACL (google it, it's not from > Micrsoft). And FILEACL is more complex than CACLS/XCACLS. Cool -- I'll check it out!! > I suggest you boot into safe mode. Then you should be able to work on > inherited rights with the GUI interface. I tried that and couldn't get it to work. I got to a directory, for example, where everything was grayed-out on the permissions tab of the "security" property, and going into the 'advanced' page I couldn't find *ANYTHING* I could change that would make that directory have editable ACL settings. Thanks for the ptr to FILEACL.... /Bernie\ -- Bernie Cosell Fantasy Farm Fibers mailto:[EMAIL PROTECTED] Pearisburg, VA --> Too many people, too few sheep <-- -- ---------------------------------------- WIN-HOME Archives: http://PEACH.EASE.LSOFT.COM/archives/WIN-HOME.html Contact the List Owner about anything: [EMAIL PROTECTED] Official Win-Home List Members Profiles Page http://www.besteffort.com/winhome/Profiles.html
