windows - Icacls, problems with permission in subfolder of Program Files (x86) -


the problem have persistent. have self-extracting rar file, files.rar. being uncompressed in c:\program files (x86)\companyname\xds\bin

now starts batch file, install.bat, in bin folder. 32 bit version of cmd.exe executes batch file. far good, works well.

but: have rename 1 file in bin folder , delete another. may wonder, why put file in there needs deleted? well, have 32 , 64 bit version of driver. depending on target, either 1 of these must renamed natusb.dll, while other must deleted.

if run batch file (simplified):

icacls natusb*.dll /inheritance:r /grant:r everyone:(oi)(ci)f icacls natusb*.dll /t  rename natusb_32_ezusb.dll natusb32.dll del    natusb_32_winusb.dll

i have following problems:

  • i need administrator rights , not acceptable purpose of company
  • even "access denied" renaming, possibly since there exists natusb32.dll. however, administrator can not delete file: "access denied"
  • the del natusb_32_winusb.dll gives "access denied"

then tried copy 2 files bin2. reason this: if "icacls bin /t" list of files permission info on long, hoped info few files. unfuntunately, "access denied" (while trying copy bin2), while file permissions administrator , system "full control". btw, icacls natusb*.dll /t not give permissions, seems work entire folders.

when in xsd (parent) folder , "icacls bin2 /inheritance:r /grant:r everyone:(oi)(ci)f" next, "icacls bin2 /t"

bin2 everyone:(oi)(ci)(f) builtin\users:(oi)(ci)(f)

i still cant copy few nat*.dll bin bin2.

if try set access rights on bin folder (very similar above), "bin: handle invalid".

btw, permissions on bin follows:

bin nt service\trustedinstaller:(i)(f)     nt service\trustedinstaller:(i)(ci)(io)(f)     nt authority\system:(i)(f)     nt authority\system:(i)(oi)(ci)(io)(f)     builtin\administrators:(i)(f)     builtin\administrators:(i)(oi)(ci)(io)(f)     builtin\users:(i)(rx)     builtin\users:(i)(oi)(ci)(io)(gr,ge)     creator owner:(i)(oi)(ci)(io)(f)

and stated before, icacls can't change of this. btw, security tab doesn't show duplicate groups or names.

in short: have problems renaming, deleting files (must urgent, solve current problem) , copying files c:\program files (x86)\xxx\xds\bin xds\bin2.

to solve problems, need use icacls or build in command in script force access rights. setting access rights in security tab of folder not acceptable: needs done script. also: can not install 3rd party software, not if large or has commercial license. few kb, perhaps 1mb free use tool may acceptable if else fails.

the solution should not require administrator rights.

any appreciated.

this main problem:

icacls natusb*.dll /inheritance:r /grant:r everyone:(oi)(ci)f

the (oi)(ci) flags valid directories, not files. because flags invalid, permission ignored. net effect of command remove permissions file, implicitly denying access everyone, including administrators.

if take out invalid flags, command work expected:

icacls natusb*.dll /inheritance:r /grant:r everyone:f

however, given description of problem, looks if will require admin access, because permissions on existing folder read-only non-administrators. there's no way around that, unless can install different folder (e.g., in user's application data folder) or change destination folder permissions in advance.

note changing folder permissions introduce security vulnerability.


Comments

Post a Comment

Popular posts from this blog

ubuntu - PHP script to find files of certain extensions in a directory, returns populated array when run in browser, but empty array when run from terminal -

i running os ububtu 16.04. ultimate goal able run php script cron job every minute. here php script located @ /var/www/html/tests/test/index.php : <?php $directorypath = $_server['document_root']."/tests/test/data/"; echo "directorypath: $directorypath<br><br>";//check $imagefilepathsarray = glob($directorypath . "*.{png,gif}", glob_brace); echo "<br><br>imagefilepathsarray: "; print_r($imagefilepathsarray);//check ?> when open php script in browser visiting url my-ip-address/tests/test/index.php , get: directorypath: /var/www/html/tests/test/data/ imagefilepathsarray:array( [0] => /var/www/html/tests/test/data/pic.png [1] => /var/www/html/tests/test/data/pic.gif ) before writing cron job in crontab file, need check if can run anywhere using terminal . opened ubuntu terminal @ /home/ location, , executed in terminal: sudo php /var/www/html/tests/test/index.php i got following out...
Read more

php - How can i create a user dashboard -

today have questions you, want create user dashboard site, include (obviously), users data, example -email -username -and others stuff how can information, , print them in html page? if can, how can these information via php sessions? shuld use session? example, if user login, , start new session ( session_start() ), how can data print in dashboard? should use php "project"? in advice, have day , thank time!
Read more

javascript - How to detect toggling of the fullscreen-toolbar in jQuery Mobile? -

i have jquery mobile page fixed full-screen toolbar, data-tap-toggle enabled. straight under toolbar have positioned banner should slide upwards when toolbar hiding , slide downward when toolbar showing. jquery mobile toggles toolbar applying , removing ui-fixed-hidden class - sadly, can't find in documentation of toolbar widget toggle , hide or show event that. how can detect when toolbar toggled, reposition banner? .banner { position: fixed; background-color: darkseagreen; top: 46px; min-height: 48px; width: 100%; text-align: center; line-height: 48px; } <!doctype html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"> <link rel="stylesheet" href="https://code.jquery.com/mobile/1.4.5/jquery.mobile-1.4.5.css"> <script src="https://code.jquery.com/jquery-1....
Read more