fat32-> ntfs:big trouble?

After converting ( with convert.exe) all drives of my win2k pro to ntfs, I AM in big trouble:

1. The "read only" doesn't work any more and couldn't be replaced by 'read' in ntfs.

2. Every has access to my website( a home server) even I idd not allow it?

Is there a fix?


The converting of my system drive is what caused the problem.

I searched MS for 'window 2000 & convert' but got no clue on this.

 

When your talking about permissions, are you referring to Share permissions or NTFS permissions? The two are very different.

You'll have to clarify a bit about the website. You can control directory and file level access using NTFS permissions and/or permissions within IIS.

 

re: trouble

1. I was wrong about the first question. In windows, 'read only' ONLY means the file can't not be changed.

2. However, I will explain more clearly the second question: I set the web home directory public_html to 'full control' for the groups(administrators,powerusers and users). It is on my win2k pro acting as a server with apache as web server.

a) So, do I expect that people who are not members of the above mentioned groups(administrators,powerusers, users) will not have access to all the files in that directory(public_html)?

If the answer is yes. Then WHY I still can see the webpages from another computer? Since I am now acting as somebody else.

 

Well, for starters using Apache throws another variable in the mix and since I have never fooled with Apache I can't really speak about that product.

I assume when you say that you have set the directory public_html to Full Control for Administrators, Power Users and Users you are talking NTFS permissions and not share permissions. Also, you made no mention if these are the only permissions set on this directory. By default Windows 2000 gives the special group Everyone Full Control access. This remains unless they're are permissions that over rule this, you remove this group or deny this group. If the Everyone group is still present, Everyone will still have access to this directory. However, the access to your web site is also controlled through your web server. I don't know if Apache works like IIS, but IIS has a special IUSR_<computername> account that acts as an anonymous user and when anyone connects to your website, they are actually using this account to connect (unless you have other authentication enabled). I don't know if Apache has anything like this but I have to think they have some mechanism that is similar.

Two questions I need to also ask are, 1) Is this Windows 2000 Pro box in a workgroup or domain? and 2) When you're connecting to your site, are you going through the internet or local intranet (LAN)?

 

re: web control

1. I am fully aware that in NTFS everyone is the default for the whole drive(or system). But I had set that so 'everyone' was not there.

2. I dont' know if Apache has the same 'anonymous' account but sure will investigate that. And thank you for the tip.

3. my wind2k was set up as work group.

4. The conection was internet connection.

I sure want to know more about IIS' anonymous users. What are their permission rights? Can their permission rights modified?

 

Ok now where getting somewhere.

If you have IIS installed bring up your Internet Services Manager in Administrative Tools and from their you can set directory permissions on each website you have configured. You can also change whether IIS uses the IUSR_<computername> account to anonymous access, whether you want to enable anonymous access, etc...

To modify the rights the IUSR_<computername> account has you can open Local Security Policy in Administrative Tools and modify the user rights on your workstation.

 

Re: I love apache

I am using apache

 

Yeah, I know that your running Apache. I was just giving the above info to help you look into the anonymous user account IIS uses by default for website access.