Solved

Removing File Deletion Privileges in Windows Server 2000

Posted on 2004-09-12
4
188 Views
Last Modified: 2013-12-04
i have been asked to remove a group's delete file privilges from a set of files in a particular directory, while allowing them to retain read, write, and execute.  these files are typically word files or excel files.  in my test, after changing privileges to the directory, when i double-click the word file i wish to make changes to and try to perform a save-as i receive error messages because word is attempting to delete the .tmp files it has created in the directory i have just relinquished file deletion privileges from.  assigning privileges on a file by file basis is not an option, as there are over 1000 files in this one directory alone and users will be creating new files from original files that they open.
0
Comment
Question by:NetNeedy
4 Comments
 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 12039169
My understanding of how word works:

You open file, Word Reads it and creates a temp file in the same directory that the word document is in
When you save the file word Deletes the original and rewrites it.
When you leave word properly, it deletes the temp file.  In short, to maintain editing ability and to create new documents, you will not be able to remove "delete" privilages.

See
http://support.microsoft.com/default.aspx?scid=kb;EN-US;211632
0
 
LVL 83

Expert Comment

by:oBdA
ID: 12039189
That's not really possible; what's the point anyway? If a user has write access to a file, he has the means to delete it (by removing the contents and saving the file). It might of course be desirable to prevent accidential deletion in Windows Explorer, while allowing changes through the program, but how is the OS supposed to tell an "accidential" deletion from a wanted one?
0
 
LVL 5

Accepted Solution

by:
ralonso earned 500 total points
ID: 12042722
the best you can do is the following:
assign delete rights to CREATOR_OWNER

That way only the creator can delete the (temporary) files.

otherwise you'll get stuck with loads of temp files.

0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 12044956
AFAIK word's *.tmp files are placed in the directory specified in the TMP or TEMP environment variable, only if the variable is missing . will be used
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Join & Write a Comment

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now