Advanced Sharing must be turned on!
Tools->Folder Options->View->use simple file sharing : OFF
I have the following directory structure:
d:\erowid.org\a_writeable\
d:\erowid.org\b_readonly\
d:\erowid.org\file.txt
I want to have a single windows share of the erowid.org directory so that
other machines can see this. I currently have this as a share named
"erowid.org". I want the share to be world readable, but writeable only for the directories and users that I specify.
I want to have the b_readonly directory and file.txt be read only. I want the
a_writeable directory to be writeable by anyone allowed to use the share.
This could be a specific user or it could be Everyone, it doesn't really
matter. I'd prefer per-user control, but whatever.
The top level share (drive) must be set to share this folder.
For that top level (drive), Security tab, then set allow boxes as appropriate for various users and groups.
Don't use a deny as a method of limiting allow unless absolutely necessary.
By default, these inherit down. Each subdirectory can have inheritance turned on or off (default is on). If you want a subdir to have less perms than its parent, turn off inheritance, then start the new allows as desired.
Generally only use deny when you are saying "joe doesn't get access to this", don't use denies to create normal permissions. Only to explicitly deny access as an exception.
---
There are lots of little things that can get set wrong here.
One of them is that sometimes folders have default perms set to allow writes and directory creates, so these need to be set off. In the case of erowid.org there were two "Users" entries in the permissions and one was set different than the other.
Posted by Earth at April 2, 2005 06:23 AM