|
File and Directory Objects
File and directory objects can be secured only when the New Technology file
system (NTFS) is in use.
The access rights for files and directories must be manipulated by using the generic access
rights.
For file objects, the handle returned by the CreateFile function has SYNCHRONIZE access and the right to read file attributes, in
addition to the access rights specified in the call (GENERIC_READ, GENERIC_WRITE,
or both).
GENERIC_READ access for file objects combines STANDARD_RIGHTS_READ and
SYNCHRONIZE with rights that allow the process to read data from the file, read file
attributes, and read extended attributes.
GENERIC_WRITE access for file objects combines STANDARD_RIGHTS_WRITE and
SYNCHRONIZE with rights that allow the process to write data to the file, append
data to it, write file attributes, and write extended attributes.
An application cannot use an access-denied ACE to deny only GENERIC_READ or
GENERIC_WRITE access to a file. If an application denies GENERIC_WRITE access to
a file, SYNCHRONIZE access is implicitly denied. When the CreateFile function is used in an attempt to open the file for read access, the function
requests SYNCHRONIZE access and the operation fails. Instead of denying read
or write access to a file, an application can explicitly allow the permitted
access rights.
For directory objects, the handle returned by the CreateDirectory function has SYNCHRONIZE access and the right to list the contents of the
directory.
For more information about files and directories, see Files.
Related Links
Software for Delphi and C++ Builder developers
Software for Visual Studio .NET developers
Software for Visual Basic 6 developers
Delphi Tips&Tricks
MegaDetailed.NET
More Online Helps
Win32 Multimedia Programmer's Reference (mmedia.hlp)
OLE Programmer's Reference (ole.hlp)
Microsoft Windows Pen API Programmer's Reference (penapi.hlp)
Microsoft Windows Sockets 2 Reference (sock2.hlp)
Microsoft Windows Telephony API (TAPI) Programmer's Reference (tapi.hlp)
Unix Manual Pages
|
