blog: file sharing

[nikos]

here's the comment area for today's blog post found at
http://www.zabkat.com/blog/16Aug09-file-sharing.htm

[Cosmo]

There is a little mistake:

You say in the blog

[nikos]

that is not true, any user can delete and modify anybody else's stuff in "all users" shared folder. In fact in there the regular rules apply, so if you put a file and then change its security to effectively unshare it, then it will not be accessible by others

the "all users" folder just has some default attributes (that all files placed in it inherit them) which give a free for all access

[WimdeLange]

Never, but never use file encryption. If you lose your password, your files are lost too. Forcing a change of your password? Then the files are not readable any more.

Better use things like TrueCrypt. Ok, if you loose your password of that, you are out of luck. But there are other reasons then loosing your password, for resetting a windows account which makes it impossible to read your files.

If I remember well I read this in these forums (and tested this behaviour too)
_________________
Groetjes,
  Wim de Lange

[Cosmo]

[Cosmo]

Wim,

in general I agree with you (inclusive TrueCrypt). But there might be a misunderstanding point: If the account owner himself changes his password, NTFS-encrypted files are still accessible; the same is true, if a password reset disk (exact English wording may differ) is used in case of a lost password. But if an admin deletes / modifies the password for the user's account, you are correct. BTW: in this case the user loses more, e.g. the stored passwords for network access.
_________________
Thomas

[nikos]

the snapshot in the article is from a normal file, not one of the shared folder. I guess it depends on your default settings, but on my XP/SP2 at least the common folder has free for all for everybody, try it! (I did)

[Cosmo]

I never doubted, that you tried.

But I doubt about your default settings, therefor I linked the MS-site for you, and this says obviously something contrary to what you believe to be default.

BTW: XP-SP2 Brrr

But before you ask: SP3 did not change anything here. The MS-page is older than SP3.
_________________
Thomas

[nikos]

it;s not about believing it's about seeing
so you are telling me that on your SP3 things are by default as in the book?

[Cosmo]

Hm, which book?

SP3 - as said - does nothing different to SP2, that is:
USER have in the Common Documents folder the rights to read and execute, and a special permission (only for this folder and subfolder - that means not for files) to create new files and folders. You have to go into the advanced security settings to see (and alter) that.

Furthermore you should see the user group CREATOR/OWNER with the special permission only for subfolder and files with full access. (In the result this means, every user can do with the himself created object whatever he wants.)

About seeing is better than believing: Here I am with you. As far as I remember you have asked some month ago about visualization software and I and another member gave some tips about Virtual Box. In case you should have installed such a software (otherwise I recommend to do so) it is the most easy way for "seeing" to install XP there. 30 days should be enough to check this. You can even make a snapshot of the fresh installation, play with the settings and can go back to the original state by simply going back to the snapshot point.

P.S. If you have not yet used Virtual Box, I suggest to search for version 2.2.4. The actual V3-branch does not look stable to me until now.
_________________
Thomas