Protecting folder-structure against accidental alteration

Protecting folder-structure against accidental alteration
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Protecting folder-structure against accidental alteration Ian 03-23-2007
Posted by =?Utf-8?B?SWFu?= on March 23, 2007, 1:16 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
We have a large data structure containing documents in hierarchical folders.
They are mainly used by speed-typists who don't always look at the screen
whilst typing, so they are not always aware when something is going horribly
wrong.

One of the biggest problems is that of folders being accidentally moved or
renamed from within File..Open dialog boxes of applications, when the user's
actual intention is to find and open a document. As we all know this is
oh-so easy to do - all it takes is a slip of the mouse, or a slightly slow
double-click when opening a folder. As there is no confimation asked, often
the user isn't even aware it's happened.

By looking at the nature of the damage I'd guess that slow-click is the main
culprit- the users habitually type the name of a folder to navigate to it in
the list, BUT if a folder has been unintentionally slow-clicked instead of
double-clicked, then it gets renamed instead.

We need some kind of protective measure, as the the data is suffering
gradual 'entropy' from the accumulation of mouse-slips by people who aren't
even trying to make changes to it at the time!

I was looking for ways of either turning off move/rename from within
dialog-boxes (especially the slow-click variety of rename) or else of using
NTFS permissions to stop renaming of the root folders in the structure.
Neither seem to be very feasible, though. Changing permissions has
undesirable side-effects such as making the creation or editing of documents
impossible, while there seems to be no registry or policy control for the
slow-click action that does most of the damage.

Mostly XP Pro desktops, NT4 server.

Any ideas?


Posted by Roger Abell [MVP] on March 23, 2007, 2:44 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Changing permissions has undesirable side-effects such as
> making the creation or editing of documents impossible

Not so.
If in the NTFS permissions dialog you click Advanced, and
then you highlight a grant and click edit, then you will see that
there is a dropbox allowing to specify to what the specific
grant applies.
In your case, you would be wanting to distinguish between
grants for This folder and subfolders and for Files only.
If you do not grant delete on folders they will not get deleted,
etc.

Roger

> We have a large data structure containing documents in hierarchical
> folders.
> They are mainly used by speed-typists who don't always look at the screen
> whilst typing, so they are not always aware when something is going
> horribly
> wrong.
>
> One of the biggest problems is that of folders being accidentally moved or
> renamed from within File..Open dialog boxes of applications, when the
> user's
> actual intention is to find and open a document. As we all know this is
> oh-so easy to do - all it takes is a slip of the mouse, or a slightly slow
> double-click when opening a folder. As there is no confimation asked,
> often
> the user isn't even aware it's happened.
>
> By looking at the nature of the damage I'd guess that slow-click is the
> main
> culprit- the users habitually type the name of a folder to navigate to it
> in
> the list, BUT if a folder has been unintentionally slow-clicked instead of
> double-clicked, then it gets renamed instead.
>
> We need some kind of protective measure, as the the data is suffering
> gradual 'entropy' from the accumulation of mouse-slips by people who
> aren't
> even trying to make changes to it at the time!
>
> I was looking for ways of either turning off move/rename from within
> dialog-boxes (especially the slow-click variety of rename) or else of
> using
> NTFS permissions to stop renaming of the root folders in the structure.
> Neither seem to be very feasible, though. Changing permissions has
> undesirable side-effects such as making the creation or editing of
> documents
> impossible, while there seems to be no registry or policy control for the
> slow-click action that does most of the damage.
>
> Mostly XP Pro desktops, NT4 server.
>
> Any ideas?
>



Similar ThreadsPosted
Stop Accidental Drag and Drop December 7, 2006, 9:30 am
Protecting CD copy June 16, 2005, 2:43 pm
protecting a folder November 1, 2005, 10:16 am
Protecting e-mails August 16, 2007, 9:03 pm
Password protecting a desktop folder October 5, 2006, 4:12 pm
password protecting a travel drive December 23, 2006, 11:53 am
Protecting the Automatic Logon Password July 18, 2007, 11:02 am
Webinar: Essential Strategies for Protecting Against the New Wave of Information Security Threats January 19, 2006, 6:55 pm

The site map in XML format XML site map

Contact Us | Privacy Policy