When using a server for users to store files, the users will normally access their files and folders through a Shared Folder, rather than directly accessing the server and share permissions are used in order to prevent different users from accessing another’s shared files.
By default, the Permissions granted to a shared folder are ‘Everyone’ however, this can be adjusted to suit the function of the system and user hierarchy and each can be selected or de-selected through the ‘Allow’ or ‘Deny’ options within the Advanced Sharing option.
If the user accesses the shared folder through Universal Naming Convention (UNC) (e.g. \\servername\folder location\) then the followng share permissions apply.
The Full Control permission provides the user with the ability to Read and Change the content of the folder as well as to change the permissions and take ownership of the files and folders within it.
The Change permission provides the user with the ability to create and modify files and subfolders and to change and delete the attributes of the files and folders present.
The Read permission provides the user with the ability to view the content and attributes of the files and subfolders and to open programs.
It is also possible for a user to access a shared folder directly through the server console and, when doing so, the permissions are set by the operating system, rather than by the shared permissions. Therefore, in order to confirm the permissions granted to the user would involve a comparison of the 2 possible restrictions as the most restrictive would be the permission granted to the user shared folder.
An Administrative Shared folder is one that is used for Administration purposes and are normally hidden from standard users through the use of the $ icon with the folder name. These folders are only accessible through the Universal Naming Convention.
Special Shared folders are also automatically created that are named ADMIN$, PRINT$ and IPC$. The ADMIN$ folder points to the Windows installation directory. The IPC$ folder is used during remote administration and the PRINT$ folder is used to administer any printers remotely.
About Athena Forensics
For information on our digital forensic services or if you require any advice or assistance please contact a member of our team on 0845 882 7386 or
via email on firstname.lastname@example.org, further details are available on our contact us page.
Our client’s confidentiality is of the utmost importance. All correspondence is treated with discretion, from initial contact to the conclusion of any
computer forensic investigation.
Our digital forensics experts are fully aware of the significance and importance of the information that they encounter and we have been accredited
to ISO 9001 for 10 years.
Our forensic experts are all security cleared and we offer non-disclosure agreements if required. Our premises along with our security procedures have been inspected and approved by law enforcement agencies.
Athena Forensics do not disclose personal information to other companies or suppliers.