Windows Network T? File System

2008 Oct 18

NTFS Permissions

The NTFS-4 file system should be used instead of the older FAT partitions because the latter does not have access control. NTFS permission for file and directories include:

• No Access : no read, write, alter, execute, or visibility
• Read : user can read or execute files
• Read only : user can read but not execute files
• Execute : user can execute files
• Change : read, execute, write, delete
• Change Permissions : of files or directories
• Take Control : take ownership
• Full Control : Change plus ability to change permissions and take ownership (become CREATOR OWNER) of an object

There is also a similar set of share permissions. In a similar way the default permission for the \WINNT directory is full control for EVERYONE. In particular this allows someone to read or change the repair directory which holds security related and other important information (such as a copy of the SAM database - then subject to password cracking). The \system32 directory has the same permissions giving access to the Registry.

NTFS-5, used by Windows 2000, has similar standard permissions:

• Full Control
• Modify
• Read and execute
• Read
• Write

These are combinations of:

• Traverse Folder/Execute File
• List Folder/Read Data
• Read Attributes
• Read Extended Attributes (including compression and encryption)
• Create Folders/Write Data
• Write Attributes
• Write Extended Attributes
• Read Permission
• Change Permissions
• Delete Subfolders and Files
• Delete
• Take Ownership
• Synchronize (make contents of one file identical with another file)

2005-2008