Solved

Removing File Deletion Privileges in Windows Server 2000

Posted on 2004-09-12
4
192 Views
Last Modified: 2013-12-04
i have been asked to remove a group's delete file privilges from a set of files in a particular directory, while allowing them to retain read, write, and execute.  these files are typically word files or excel files.  in my test, after changing privileges to the directory, when i double-click the word file i wish to make changes to and try to perform a save-as i receive error messages because word is attempting to delete the .tmp files it has created in the directory i have just relinquished file deletion privileges from.  assigning privileges on a file by file basis is not an option, as there are over 1000 files in this one directory alone and users will be creating new files from original files that they open.
0
Comment
Question by:NetNeedy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 12039169
My understanding of how word works:

You open file, Word Reads it and creates a temp file in the same directory that the word document is in
When you save the file word Deletes the original and rewrites it.
When you leave word properly, it deletes the temp file.  In short, to maintain editing ability and to create new documents, you will not be able to remove "delete" privilages.

See
http://support.microsoft.com/default.aspx?scid=kb;EN-US;211632
0
 
LVL 84

Expert Comment

by:oBdA
ID: 12039189
That's not really possible; what's the point anyway? If a user has write access to a file, he has the means to delete it (by removing the contents and saving the file). It might of course be desirable to prevent accidential deletion in Windows Explorer, while allowing changes through the program, but how is the OS supposed to tell an "accidential" deletion from a wanted one?
0
 
LVL 5

Accepted Solution

by:
ralonso earned 500 total points
ID: 12042722
the best you can do is the following:
assign delete rights to CREATOR_OWNER

That way only the creator can delete the (temporary) files.

otherwise you'll get stuck with loads of temp files.

0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 12044956
AFAIK word's *.tmp files are placed in the directory specified in the TMP or TEMP environment variable, only if the variable is missing . will be used
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Permission issue? 10 79
risks of using YouSendIt & DropBox & GoogleDrive 12 99
Monitoring software... 2 73
Removing local admin rights 4 7
As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question