Security question

[Christian Havel]

Hi,

I have a service which creates Xml-files in the directory "Documents and
Settings\All Users\Application Data\My Company\"

The service is running on a Windows Server 2003 system. In the security
properties of the directory I added "Everyone" with the permissions "Full
Control" to enable the xml file creation.
Well, it works fine but I think that some Sys-Admins could have a problem to
assin the above security properties ("Everyone") or is this ok????
Christian

 

[Misbah Arefin]

Running the service with LocalSystem will grant the service all access to
the machine and you wont have to explicitly assign permissions on the folder
but if your service needs access to other machines on the network this wont
work as LocalSystem presents itself as Guest to all network resources
http://msdn2.microsoft.com/en-us/library/ms684190.aspx

http://msdn2.microsoft.com/en-us/library/ms686005(VS.85).aspx

 

[Christian Havel]

Running the service with LocalSystem will grant the service all access to
the machine and you wont have to explicitly assign permissions on the folder
but if your service needs access to other machines on the network this wont
work as LocalSystem presents itself as Guest to all network resources
http://msdn2.microsoft.com/en-us/library/ms684190.aspx

http://msdn2.microsoft.com/en-us/library/ms686005(VS.85).aspx

 

[Phil Johnson]

--
Regards,

Phillip Johnson (MCSD For .NET)
PJ Software Development
www.pjsoftwaredevelopment.com

 

[Phil Johnson]

You might also want to look into using procmon to identify any security
permissions required running .net code as a restricted user...

http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx

You get a lot of results, but you can easily filter down for failures for a
specific user or process and it tells you exactly which permissions are
required.

--
Regards,

Phillip Johnson (MCSD For .NET)
PJ Software Development
www.pjsoftwaredevelopment.com

 

[Misbah Arefin]

--
Regards
Misbah Arefin