Mayayana
12/12/2011 2:49:00 PM
| > One other quick thought: Did you change permissions
| > on the file? Also, from what I can find, if a file is once
| > virtualized then changing permissions won't change that.
|
| No, I changed just the permissions on the folder. I think I got an error
| when I used the code in an attempt to change the file permissions,
although
| I can't quite remember now, my head was spinning round at the time ;-)
|
| I'll try the second version of the code later today, or perhaps tomorrow.
It
| looks much more complex than the first version and I need a rest at the
| moment :-)
|
I haven't had a chance to try it yet, but I think you
should only need the code from the first version, or
from the Setup1 with noSE package, which is even
simpler.
That code is designed to work on what you've created
yourself. The code in #2 is code for taking ownership so
that one can then set permissions on public folders, system
files, etc. That only seems to work for admins, anyway.
I don't think "lackey users" can take ownership. For admins
it's a bizarre bureaucracy: You don't have permission to
access system files...but you do have power to take ownership
of them....and if you take ownership you can give yorself
permission. :) The #2 code is dsigned to be the programmatic
equivalent of using the command line programs takeown and
cacls together, which is Microsoft's recommended way for
sys admins to get access.
...I can never figure out whether Microsoft
practices "security through obscurity" or "security through
a committee of long-winded obsessive-compulsives". Either
way, the permissions stuff is stunningly overproduced, and
the version I used seems to be the simplest of several
approaches.