Welcome to Sign in | Join | Help
in
Home Blog Forums

The Lazy Admin

Lock Down Your Share Permissions

Sponsor

There are two forms of file system permissions, share and NTFS. Windows 2000/XP sets the share permissions to Everyone - Full Control. Windows XP SP1 and Windows 2003 changed that to Everyone - Read Only.

That is ok, as you can lock down access rights with NTFS Permissions, however it is a best practice to remove the Everyone group, and add the Authenticated Users or Domain Users group to the Share permissions and give them Full Control.

 

Then use NTFS Permissions to control access. Remember the most restrictive of the combined permissions is what gets applied and Deny overrides everything!





Published Monday, June 06, 2005 8:11 AM by rodney.buike

Comments

No Comments
Anonymous comments are disabled

This Blog

Powered By

 

Syndication

Sponsors

 
 
Get a free 5GB e-mail account @isalazyadmin.com

Affiliates

Canadian IT Professionals

Canadian IT Managers

Certifications & Awards


All postings are provided "AS IS" with no warranties, and confer no rights.
Microsoft product screen shot(s) reprinted with permission from Microsoft Corporation.
Copyright TheLazyAdmin Inc. All Rights Reserved 2004-2008