I
Invisible
I have a folder on our network fileserver that is exhibiting extremely
bizzare behavior. Specifically, if I log on to a Windows NT 4.0
Workstation machine, when I try to open this folder from Windows
Explorer I get "Access Denied". However, if I log on to a machine
running Windows XP Professional, I can open the folder without
difficulty. What the hell...?!
I thought the entire POINT of security permissions being on the server
is that the SERVER decides whether you can or can't access stuff, not
the client. Why would using a different client OS make the slightest bit
of difference? I find this really quite frightening.
The fileserver is Windows 2000 Server. User accounts are Active Domain.
My user account has the following permissions to the folder:
Traverse Folder / Execute File: No
List Folder / Read Data: Yes
Read Attributes Yes
Read Extended Attributes Yes
Create Files / Write Data Yes
Create Folders / Append Data Yes
Write Attributes Yes
Write Extended Attributes Yes
Delete Subfolders and Files No
Delete No
Read Permissions Yes
Change Permissions No
Take Ownership No
No other permissions are being inherited by this folder. No other
security groups to which I belong are mentioned in the permissions.
I realise that this is a pretty bizzare combination of permissions. I
have no idea why it's set that way. (We have an in-house application
that automatically fiddles with file permissions. I believe in this case
it has set them wrong - but the application authors won't believe me
because "it works in XP". <sigh>)
Somebody suggested it might be something to do with the "Bypass traverse
checking" - but this option is Enabled for the group Everyone on both
test machines, and yet one gives me access and the other does not.
Any help here??
bizzare behavior. Specifically, if I log on to a Windows NT 4.0
Workstation machine, when I try to open this folder from Windows
Explorer I get "Access Denied". However, if I log on to a machine
running Windows XP Professional, I can open the folder without
difficulty. What the hell...?!
I thought the entire POINT of security permissions being on the server
is that the SERVER decides whether you can or can't access stuff, not
the client. Why would using a different client OS make the slightest bit
of difference? I find this really quite frightening.
The fileserver is Windows 2000 Server. User accounts are Active Domain.
My user account has the following permissions to the folder:
Traverse Folder / Execute File: No
List Folder / Read Data: Yes
Read Attributes Yes
Read Extended Attributes Yes
Create Files / Write Data Yes
Create Folders / Append Data Yes
Write Attributes Yes
Write Extended Attributes Yes
Delete Subfolders and Files No
Delete No
Read Permissions Yes
Change Permissions No
Take Ownership No
No other permissions are being inherited by this folder. No other
security groups to which I belong are mentioned in the permissions.
I realise that this is a pretty bizzare combination of permissions. I
have no idea why it's set that way. (We have an in-house application
that automatically fiddles with file permissions. I believe in this case
it has set them wrong - but the application authors won't believe me
because "it works in XP". <sigh>)
Somebody suggested it might be something to do with the "Bypass traverse
checking" - but this option is Enabled for the group Everyone on both
test machines, and yet one gives me access and the other does not.
Any help here??