|
Security Editor
Both File Manager and the Microsoft Windows NT Registry Editor (REGEDT32.EXE)
include a security editor that allows a user with the appropriate privileges and access rights to change the security attributes of files and registry keys. This security
editor imposes guidelines on the form of the security information. Applications
that modify the security of files, directories, or registry keys can follow
these guidelines so the security editor will function correctly after the
modifications.
The security editor accepts discretionary ACLs having either zero or more
ACCESS_DENIED_ACE access-control entries (ACEs) or zero or more ACCESS_ALLOWED_ACE
ACEs. The two ACE types cannot be mixed in a discretionary ACL. Neither does
the security editor accept ACCESS_DENIED_ACE ACEs that deny only partial access.
For example, it would reject an ACE that denies only read access to a file.
The security editor also imposes a requirement on inheritance flags. These
flags are ignored for noncontainer objects, such as files, but are important for
container objects, such as directories and registry keys. For container objects
that support permissions on objects in the container, make sure that each
security identifier (SID) has an ACE inherited by objects and an ACE inherited by
containers. Accordingly, the discretionary ACL should contain ACEs in which the AceFlags member of the ACE_HEADER structure structure contains the OBJECT_INHERIT_ACE and CONTAINER_INHERIT_ACE
flags. Sometimes these flags can be combined in a single ACE. For example, a
discretionary ACL that grants read access to a directory can contain a
CONTAINER_INHERIT_ACE ACE that grants GENERIC_READ access to the user or group as well
as an ACE with the OBJECT_INHERIT_ACE and INHERIT_ONLY_ACE flags that also
grants GENERIC_READ access. In this case, the required flags could be combined into
an ACE that grants GENERIC_READ access and combines the CONTAINER_INHERIT_ACE
and OBJECT_INHERIT_ACE flags.
The same rules for inheritance flags apply to system ACLs. The security editor
does not support the SYSTEM_ALARM_ACE type and will not edit a system ACL
containing one. As noted earlier, this ACE type is not supported by the current
version of Windows NT.
| Last news from Greatis Software |
 |
|
Nostalgia .Net |
|
.Net is powerful, but not all-powerful, so sometimes we need to use Win32 API for our .Net applications. It's simple enough with Platform Invoke if you have Win32 skill, but we do not always have time to dig the ancient documentation, declare the special types that are compatible with Win32, find the values of the Win32's constants and so on. Nostalgia .Net offers several simple-to-use classes, and components that will allow you to forget about the headache of Win32 and just use the power of Win32 in your application the same way as you use the native. Net classes. More » |
| Recommended software for developers |
 |
|
Ultimate Pack |
|
Component pack for Delphi and C++ Builder that contains runtime form designer, runtime object inspector, print suite and much more for the very special price. More » |
 |
|
Form Designer .Net |
|
Unique runtime form design solution that allows to edit any form in .Net WinForms application at runtime with full source codes for only 300 euro! More » |
 |
|
Print Suite .Net |
|
Print Suite .Net is a set of components for easy printing texts, images and grids from your WinForms applications. Full C# source codes are available More » |
 |
|
Gradient Controls .Net |
|
Gradient Controls .Net offers controls with gradient background feature. Labels, panels and so on... Full C# source codes are available More » |
 |
|
Greatis iGrid |
|
iGrid plots drawing grid right over your desktop, so you can use it everywhere, with any drawing application without any special plugins for different graphic editors. More » |
All the contacts and projectsDmitry Vasiliev (just.dmitry)
Related LinksSoftware for Visual Studio .NET developers
Software for Delphi and C++ Builder developers
Software for Visual Basic 6 developers
Delphi Tips&Tricks
MegaDetailed.NET More Online Helps Win32 Programmer's Reference
Win32 Multimedia Programmer's Reference
OLE Programmer's Reference
Microsoft Windows Pen API Programmer's Reference
Microsoft Windows Sockets 2 Reference
Microsoft Windows Telephony API (TAPI) Programmer's Reference
Unix Manual Pages
|
