Try these: Home | Shares | Micro$oft | Security | Common Errors | Helpdesk | Definitions | New Host? | blog | v5.html
How do NTFS permissions work?
What needs to be kept in mind when assessing XP's File-Sharing SECURITY, is
that it's dual-layered.
When you connect to a remote share, you're subject to permissions set at BOTH
the share and file level.
With XP file-security, rights can be assigned to individual users or groups of
people. Right-Click; My-Computer | Select MANAGE.
Of all the readings on this topic, the most key thing to understand, and the
most likely thing to be overlooked is the following.
- Folder Share AND NTFS permission's combine to determine the
actual rights a user or group receives.
- AND; The most restrictive of those rights will prevail
Below; are some very breif notes on this topic (NTFS permissions)
User Rights; Are rules that determine the actions a user can perform on
a computer. (Eg; Logon, using Backup services, etc)
Permissions; Are authority to perform "an operatin on an object".
Permissions are granted OR denied by an objects owner.
Permissions are inherited from the Root-Directory. Inheritance permissions flow
downwards from the Parent-Object.
The Deny permisson over-rides the Allow permission.
Assigning permissions is possible because, files and folders each have an
"Access Control List" (ACL) associated with it.
When you Block inheritance, your effectively creating a new parent, and normal
inheritance will apply.
Only people who "Own-a-Folder" can give access to others.
When a new share is created, the "Everyone-Group" is added by default, is is
BEST-PRACTISE to remove the everyone group, and ADD appropriate permissions as
required.
Copy Vs Move; Moving files takes ALL File-and-Folder permissions with it. (I
use copy for this reason) copied files will assume permissions from the
container/directory copied to.
The Full control permission to the Everyone group is the default permission on
shared folders, and it incorporates the Change and Read permissions.
This permission allows users full administrative permissions over folders and
files, which includes taking ownership of files and changing file permissions.
Ownership pertains to NTFS only.
NOTE; As I review my notes, the jargon above seems to be AMBIGUOUS at best, but
it does make sense the more I work with windows shares and NTFS permissions.
There is a lot more that can be said about 'permissions', but for ME, not right
now. (10:15am Friday 27 Feb 2009)
Micro$oft
Tony Sarno (APC Editorial; July 2004)
Its important to be aware of the pitfalls of rushing into the latest
technologies [Quote] "It struck me then why Microsoft will continue to be
such a dominant computing force: unlike the open source advocates, Microsoft
first and foremost sells reassurance and comfort. It sells a set of defacto
standards that make IT managers feel safe and in control. This by far
outweights the fact that most Total Cost of Ownership studies comparing
Microsoft and open source solutions show the former to be more expensive. In
the old days, there was a saying that nobody got fired buying IBM. These days,
you can substitute Microsoft for IBM". [End-Quote]
Now; 10:00am Sunday 8 June 2008, and I believe that Linux is gaining ground
rapidly in all areas, from the installation, management, the user-interface,
(and any number of other features and utilities), of the OS.
Security Trade_Offs
Security is always going to be a trade off between ease of use and
how much security is required, which depends upon the value of the data
being secured.
The biggest mistake security people make is strapping systems down so that
enterprise production is damaged. The enterprise does not exist to let you
practise security. Security exists to serve the enterprise.
Learning About Cryptography http://www.ciphersbyritter.com/LEARNING.HTM
Terry Ritter, 2006 January 20
For some reason, good cryptography is just much harder than it looks. This
field seems to have a continuous flow of experts from other fields who offer
cryptographic variations of ideas which are common in their other field. Now,
there is nothing wrong with new ideas. But there are in fact many extremely
intelligent and extremely well-educated people with wide-ranging scientific
interests who are active in this field. It is very common to find that
so-called "new" ideas have been previously addressed under another name or as a
general concept. Try to get some background before you get in too deep.
Common Errors;
[NOTE; 10:15am Friday 27 February 2009] This space is reserved for the
title-theme 'Common-Errors; When setting up and configuring Ethernet/Microsoft
Workgroups'
Helpdesk
Client Support includes maintaining Conectivity and Printing services for
your networked users.
The Helpdesk also performs a number of other things, (Depending on the
organisation) but for the purposes of this page, I will focus on documentation
of Connectivity and Printing issue's here.
Determining the problem, (especially over the phone), can be easy or
difficult depending upon the users computer skills communicating the
problem.
Web standards and Technologies explained
'Web standards' is a buzz phrase bandied around in the internet industry,
but what does it mean and why is it important? Basically, it referes to a set
of guidelines by The World Wide Web Consortium (W3C), and industry organisation
dedicated to building consensus around web technologies. The WC3's standards
are designed to ensure sites can work well for people of all abilities (and
disabilites) and with a broad range of PCs and browsers (at least those that
support these standards). You'll find much more information on the W3C's site
http://www.w3.org/QA/2002/04/Web-Quality
is a good place to start). Here's a quick guide to some of the important
terms and technologies.
HTML (HyperText Markup Language). The orginal language used to
structure and design web sites. The most recent standard, HTML 4.01, is now
eight years old. There is talk of a version 5, but today's well-designed sites
generally use XHTML instead of HTML.
XML (eXtensible Markup Language). A language that was designed to add
a flexible yet clear tree-like structure to documents, and which is now widely
used to translate/tranfer data from sources on web servers.
XHTML (eXtensible HTML). A newer version of HTML, which is compliant
with XML rules. It's still at version 1.0 officially but is preferred on many
modern sites because of its support for XML-based technology, such as AJAX.
AJAX (Asynchronous JavaScript and XML). A relatively new technique
that combines JavaScript and XML to allow a web browser to retrieve data from a
server without reloading the entire web page, and often with a cool effect. It
allows developers to create more responsive, data-rich sites.
CSS (Cascading Style Sheets). The language which is recommended by
the W3C for controlling the design of a web page. HTML was once always used for
this purpose, but on today's well-designed sites it's only being used to
structure the content (main heading, subheadings, body text and so on), with
all the colour and design markup being done with CSS. This separation of design
and structure code makes it much easier to change the design of a site
quickly.
Valid or validated. This simply means that a site conforms to one of
the W3C standards. The W3C provides a validation tool at http://validator.w3.org , which anyone can
use to test their site.
Click 'Home' to view CPU Timeline.
