WIN prava nad folderima
Kako videti prava nad folderima, osim klasičnim metodom : desni klik na folder/Properties/Security?
Ovo nije baš uvek zgodno, jer je prozor mali i ne vidi se sve niti lepo niti sve odjednom.
Mnogo je lakše to gledati kroz komandnu liniju :
C:\Users\velda>icacls \\folder1\folder2\folder3
\\folder1\folder2\folder3 domen1\korisnik1:(OI)(CI)(RX)
domen1\korisnik2:(OI)(CI)(F)
domen1\korisnik3:(OI)(CI)(RX)
domen1\grupa1:(OI)(CI)(RX)
domen1\grupa2:(OI)(CI)(F)
Successfully processed 1 files; Failed processing 0 files
Evo značenja gornjih oznaka :
iCACLS inheritance settings :
(OI) — object inherit, this ACE will be inherited by objects placed in this container.
(CI) — container inherit, this ACE will be inherited by subcontainers placed in this container
(IO) — inherit only;
(NP) — don’t propagate inherit, this ACE will be inherited by objects and subcontainers one level deep – it will not apply to things inside subcontainers.
(I) — permission inherited from the parent container, this ACE was inherited from the parent container.
ACE – access control entries
List of basic access permissions :
D — delete access;
F — full access;
N — no access;
M — modify access, user has the right to write and modify file system objects in this directory
RX — read and eXecute access;
R — read-only access;
W — write-only access
Detailed permissions :
DE — delete;
RC — read control;
WDAC — write DAC;
WO — write owner;
S — synchronize;
AS — access system security;
MA — the maximum allowed permissions;
GR — generic read;
GW — generic write;
GE — generic execute;
GA — generic all;
RD — read data/list directory;
WD — write data/add file;
AD — append data/add subdirectory;
REA — read extended attributes;
WEA — write extended attributes;
X — execute/traverse;
DC — delete child;
RA — read attributes;
WA — write attributes.
NTFS fajl sistem i WIN 10
Ili ono što se vidi kad se na folder klikne desni klik/Properties/Security :
Full control: Allows users to read, write, change, and delete files and subfolders. In addition, users can change permissions settings for all files and subdirectories.
Modify: Allows users to read and write of files and subfolders; also allows deletion of the folder.
Read & execute: Allows users to view and run executable files, including scripts.
List folder contents: Permits viewing and listing of files and subfolders as well as executing of files; inherited by folders only.
Read: Allows users to view the folder and subfolder contents.
Write: Allows users to add files and subfolders, allows you to write to a file.
