Information about joeware mixed with wild and crazy opinions…
…can’t you turn on auditing of the manipulation of share permissions directly either through GUI or code?
By this, I mean the permissions on the share, not permissions on the files and folders in the share. This may seem odd, but maybe, just maybe you want to know WHO is changing permissions on the share.
Just thinking out loud here…
joe
Please note: Comment moderation is currently enabled so there will be a delay between when you post your comment and when it shows up. Patience is a virtue; there’s no need to re-submit your comment.
[powered by WordPress.]
27 queries. 0.433 seconds
Theme copyright © 2002–2008 Mike Little.
June 1st, 2007 at 4:29 pm
There are countless many reasons that I tell people to not use share permissions but instead use file system permissions. This was never on my list, but if I get a chance to look at the code and confirm it is true, it will be in the future.
My main reason that I use NTFS perms instead of file share, though, is simple: troubleshooting. It means all of your interesting ACLs are in the same place.
Makes life a heck of a lot easier when you are trying to figure out why someone doesn’t have the correct access to some resource.