NTFS folder permissions query

[Steely]

Is there any way of protecting explicitly defined permissions for a sub-folder?

e.g.
Example folder structure

\PERSONAL DATA (read/write)
\PERSONAL DATA\USER 1 (inherited read/write)
\PERSONAL DATA\USER 2 (inherited read/write)
\PERSONAL DATA\SHARED DATA (inherited read/write)
\PERSONAL DATA\SHARED DATA\CONFIDENTIAL (explicit read only)
\PERSONAL DATA\SHARED DATA\ACCOUNTS (inherited read/write)
\PERSONAL DATA\SHARED DATA\SALES (inherited read/write)
\PERSONAL DATA\SHARED DATA\TECHNICAL (explicit access to group)\PERSONAL DATA\SHARED DATA\LEGAL (explicit access to group)


If someone were to look at the permissions at the \PERSONAL DATA\SHARED AREA and choose to 'replace permissions entries on all child objects with entries shown here that apply to child objects' this will force reinheritance again for the CONFIDENTIAL, ACCOUNTS, SALES, TECHNICAL and LEGAL sub-folders. The user is prompted to that effect, however mistakes happen especially when you're training less experienced support technicians.

Does anyone know of a way that we can stop the permissions from being reherited, via third-party software or tweak?

Thanks




Dan

 

[~mr mixx~]

A better solution would be to put a password on your windows startup logon.....

that way no one can access the C drive without putting in the password & since it is encrypted it cannot be broken into.

 

[Steely]

Forgot to say, this is a networked client machine connecting to a w2k domain, but surely if we were dealing with permissions on a local machine it would be best to assign permissions to folders/sub-folders with NTFS permissions?

Thanks for feedback all the same.

Regards,





Dan