?
Solved

Removing File Deletion Privileges in Windows Server 2000

Posted on 2004-09-12
4
Medium Priority
?
195 Views
Last Modified: 2013-12-04
i have been asked to remove a group's delete file privilges from a set of files in a particular directory, while allowing them to retain read, write, and execute.  these files are typically word files or excel files.  in my test, after changing privileges to the directory, when i double-click the word file i wish to make changes to and try to perform a save-as i receive error messages because word is attempting to delete the .tmp files it has created in the directory i have just relinquished file deletion privileges from.  assigning privileges on a file by file basis is not an option, as there are over 1000 files in this one directory alone and users will be creating new files from original files that they open.
0
Comment
Question by:NetNeedy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 96

Expert Comment

by:Lee W, MVP
ID: 12039169
My understanding of how word works:

You open file, Word Reads it and creates a temp file in the same directory that the word document is in
When you save the file word Deletes the original and rewrites it.
When you leave word properly, it deletes the temp file.  In short, to maintain editing ability and to create new documents, you will not be able to remove "delete" privilages.

See
http://support.microsoft.com/default.aspx?scid=kb;EN-US;211632
0
 
LVL 85

Expert Comment

by:oBdA
ID: 12039189
That's not really possible; what's the point anyway? If a user has write access to a file, he has the means to delete it (by removing the contents and saving the file). It might of course be desirable to prevent accidential deletion in Windows Explorer, while allowing changes through the program, but how is the OS supposed to tell an "accidential" deletion from a wanted one?
0
 
LVL 5

Accepted Solution

by:
ralonso earned 1500 total points
ID: 12042722
the best you can do is the following:
assign delete rights to CREATOR_OWNER

That way only the creator can delete the (temporary) files.

otherwise you'll get stuck with loads of temp files.

0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 12044956
AFAIK word's *.tmp files are placed in the directory specified in the TMP or TEMP environment variable, only if the variable is missing . will be used
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…
Suggested Courses
Course of the Month10 days, 5 hours left to enroll

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question