Can be set on a file or folder on Windows NTFS disk partitions are NTFS permissions, which can set five kinds of file permissions, respectively: "Full Control", "Edit", "Read and Execute", "read" and "write." Folder permissions can be set up six kinds, in addition to the above five kinds of privileges and a "List Folder Contents" permission.
Several more authority, also known as standard NTFS permissions, and its role is easier to understand. In addition to these types of standard permissions, Windows also provides a special NTFS permissions, complement and refine these types of standard permissions. In particular, for example, NTFS standard access permissions to the "read" permission into "read data", "read attribute", "extended attribute read" and "read permission" four more specific permissions. Click the "Advanced" button in the Properties dialog box, and then in the pop-up "Access Control Settings" dialog "Permissions" tab, click "View / Edit" button, you can set up a special NTFS permissions.
To introduce you to some of the features of these special NTFS permissions.
- Traverse Folder / run file
"Traverse Folder" allows the user does not have access even in the case of a folder, you can still switch to that folder. This permission applies only to folders set up, does not apply to files. Only when the group or user does not give "Bypass Traverse Checking" user rights in the "Group Policy", traverse to the folder will take effect. By default, everyone has a set of user rights "Bypass Traverse Checking", so here's "Traverse Folder" permission setting does not work. "Run the file" allows the user to run the program file, the permission setting applies only to files, not for folders. - List Folder / Read Data
"List Folder" so that users can see the name of the file name in the folder and subfolders of the folder. "Read Data" allows users to view data in the file - Read attribute
this permission allows users to view the folder or file attributes, such as read-only, hidden attributes - Read Extended Attributes
This permission allows users to view the folder or extended attributes of the file. Extended attributes are defined by the application itself, different applications may have different settings - Create Files / Write Data
"to create the file" allows users to create files within the folder; "write" allows users to change the data in the file
and there are some, will not be introduced one by one, to give you list only, then use your search:
6, create folders / append data
7, write attribute
8, write extended attributes
9, delete subfolders and files
10 deleted
(this permission allows users to delete the folder and file even. users of the folder or file is not "delete" permission, but as long as he has a folder "delete subfolders and files' permissions for the parent folder, he can still delete the folder or file.)
11, read permission
12, change permissions
13, take ownership
finally give you add a few words: special privileges not generally understood "special", it is only a file attribute of refinement!
