NetNeedy
asked on
Removing File Deletion Privileges in Windows Server 2000
i have been asked to remove a group's delete file privilges from a set of files in a particular directory, while allowing them to retain read, write, and execute. these files are typically word files or excel files. in my test, after changing privileges to the directory, when i double-click the word file i wish to make changes to and try to perform a save-as i receive error messages because word is attempting to delete the .tmp files it has created in the directory i have just relinquished file deletion privileges from. assigning privileges on a file by file basis is not an option, as there are over 1000 files in this one directory alone and users will be creating new files from original files that they open.
That's not really possible; what's the point anyway? If a user has write access to a file, he has the means to delete it (by removing the contents and saving the file). It might of course be desirable to prevent accidential deletion in Windows Explorer, while allowing changes through the program, but how is the OS supposed to tell an "accidential" deletion from a wanted one?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
AFAIK word's *.tmp files are placed in the directory specified in the TMP or TEMP environment variable, only if the variable is missing . will be used
You open file, Word Reads it and creates a temp file in the same directory that the word document is in
When you save the file word Deletes the original and rewrites it.
When you leave word properly, it deletes the temp file. In short, to maintain editing ability and to create new documents, you will not be able to remove "delete" privilages.
See
http://support.microsoft.com/default.aspx?scid=kb;EN-US;211632