How a user can delete a file without rights from cut/paste action?
i have problem on 1 windows server 2003.
here situation.
on same drive e:\
folder 1 : jdoe has read access
test has modify
folder 2 : jdoe has modify access
user test take file on folder on modify access , cut/paste or move folder two.
after verification files on destination folder 2 has rights destination folder 1 supposed in rules of cut/paste or move. perfect.
after verification effective permission on file user jdoe has read access in folder 2 file moved.
the problem user jdoe can delete file if doesn't have rights it.
i did replace permission on child objects on these 2 folders , did replace owner on these 2 folders , sub-folders. nothing can break behavior.
no 1 admin on server user jdoe has modify access on folder 2 not supposed useful because file cut/paste action folder on same volume
someone has saw or can me ?
thanks
hi,
this by behavior.
by default, object inherits permissions parent object, either @ time of creation or when copied or moved parent folder. exception rule occurs when move object different folder on same volume. in case, original permissions retained.
the object’s original permissions added inheritable permissions in new location.
additionally, note following rules:
- the group granted allow full control permissions root of each ntfs drive.
- deny permissions take precedence on allow permissions.
- explicit permissions take precedence on inherited permissions.
- if ntfs permissions conflict -- example, if group , user permissions contradictory -- liberal permissions take precedence.
- permissions cumulative.
- to preserve permissions when files , folders copied or moved, use xcopy.exe utility /o or /x switch.
how permissions handled when copy , move files , folders
http://support.microsoft.com/kb/310316
this posting provided "as is" no warranties , confers no rights! test suggestion in test environment before implementing!
Windows Server > File Services and Storage
Comments
Post a Comment