Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 247
  • Last Modified:

Shared Folder Permissions

Hello, I'm looking to setup a file dropbox on our file servers running W2k3 and W2k8 Server. The idea is that staff on the LAN will drop files into this folder via a mapped drive. The problem is that I need the person dropping the file into this network drive to do so without being able to see the contents of the folder. Similar to ftp uploads were you can write to it but you do not have list persmissions. This is for internal LAN use only.

It is important that staff can not see what others have droped into the folder, Can it be done (I can't see how) and if yes how do i go about it. FTP is not an option, IIS is if possible. It needs to be as simple as opening the folder and copying in files. On refresh the user will not see any files including their own. Any solution other than FTP would be great.

Thanks, Aelara.
0
Aelara
Asked:
Aelara
  • 2
  • 2
  • 2
  • +2
2 Solutions
 
Chris MillardCommented:
Could you try changing the permissions so that users have write and modify access but not read and execute?
0
 
AlexPaceCommented:
What if you set up a little service to watch the folder and move any files that appear?  It could poll for files every 5 seconds or so and them move them to a safe place.   If you know Visual Studio you could make this using the FileSystemWatcher project.  If you just want to buy something off the shelf I don't know... you could do it with Robo-FTP but it would be strange to use an FTP automation client to just move files around the LAN.  Some searching might turn up other options.
0
 
duffmeCommented:
You don't want the uploader to see what they've uploaded, or just other uploaded data?  There is a special group called CREATOR OWNER.  You can grant only this group and other necessary groups permissions to the upload share and remove the Everyone/Authenticated Users rights.  Just assign WRITE  permissions without using Read, Modify, etc.
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
yo_beeDirector of ITCommented:
I do not think it is possible to have someone have Write access to a share, but hide th content.  
You are sort of negating the ACL you are trying to allow.

When it comes to Windows FTP you still will see the files since they are in the same folder.

You will need to do something like ALEXPACE suggested.
I would recommend ROBOCOPY (Free download for 2003 or already part of 2008).
This will monitor the folder for changes and when it see's one it will then mov the file.  
robocopy "source" "dest" /mov /MON:1 /log+:"logfilename".log
The other is to run the number of minutes there is between each pass.
robocopy "source" "dest" /MOV /MOT:1 /LOG+:"logfilename".log
Have this as a scheduled startup batch.
0
 
duffmeCommented:
I forgot to mention: once a user copies data to a drive with no read access they can not confirm that the copy was successful and may try to do so again.  If you go with CREATOR OWNER and and don't care that the user sees what they themselves copied then it is easier.  You could always run a script periodically to set all permissions on existing data so users don't see even their own uploads.
0
 
AelaraAuthor Commented:
Thank you all for the info, I'm not concerned about individuals being able to see their own files, I simply need them not to see other peoples files. I'll give it a go tomorrow.

Regards, A.
0
 
yo_beeDirector of ITCommented:
Like I said, they will see them, but will not be able to open them.
There is no way to find the file with NTFS.

The best way to hide the files is to have them moved upon uploading.

0
 
AelaraAuthor Commented:
It's worked, Many thanks.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 2
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now