file storage

pts.
Tags:
Access
Active Directory
Desktops
Development
Management
Microsoft Office
Microsoft Windows
Network monitoring
Networking
OS
Security
Servers
SQL Server
Storage
Updates from SearchStorage.com staff
Hi there is there a way to prevent users from saving files by extension to a share on a file server say I want them to save doc xls ppt and pictures files but prevent them from saving exe files I want users to be denied copying exe files fron flash disks or CDs to the share or home folder any suggestions? Thanks folks

Answer Wiki

Thanks. We'll let you know when a new response is added.

Hi,
if I read word to word, I understand you hope to save space in the shared folder.
if this is true, I have no idea.
But if idea is to avoid running untrusted exe, just remove execution right on these folder. By this way, saved exe becomes useless, and users will not put the exe in the shared because they are unrunnable.

this suppose that trusted exe are in a readonly folder

Discuss This Question: 6  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Ramheka
    but if I take off execute I will take off read too as they go hand in hand I tried it and during the test couldn't get the home folder
    0 pointsBadges:
    report
  • JPLamontre
    sorry, I thought to unix rules where read is distinct from execute. Don't know how to do this with windows
    0 pointsBadges:
    report
  • Ramheka
    I have written a script that runs non stop that looks and distroys files not supposed to be stored. I ve been testing it on over 1400 users so far it is doing great job. I know windows is not the greatest and to go deeper with its permissions. thanks for your help
    0 pointsBadges:
    report
  • Petroleumman
    Hello, If your running an Active Directory domain you may want to use Group Policy to restrict users from downloading .exe files from the internet in the first place or simply prevent users from running unauthorized programs. GP is a powerfull tool! Good luck!
    0 pointsBadges:
    report
  • Csmmis
    You CAN restrict your users so they can only read/write/list files, thus removing the ability to run any executables. You noted that on security settings, Read & Execute are together, and they are--you should uncheck this one--but below that, List Folder Contents, Read, and Write are listed as separate permissions. If you leave these checked, your users will have ability to read and list the files, and write new items to the folder, but not run any executables. If you want that permission setting to flow down to all subfolders/files within the folder, make sure you apply the changed permission setting using the Advanced button. Hope this helps.
    0 pointsBadges:
    report
  • Ramheka
    thanks there read and execute only will prevent users from deleting their own files, I want them to have fukk control over their home folders but stop them from running apps or exe files from there, I know unix and Linux have the ability but windows still playing catch up
    0 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following