Board index » delphi » different file access permissions from within a DELPHI app

Reiner Kunz

Delphi Developer
Sun, 18 Jan 2004 05:52:22 GMT

different file access permissions from within a DELPHI app

Hi ,

how can I use different file access permissions from within a DELPHI
application than the user really has? I want to write/delete files inside a
LAN directory from a DELPHI app where the user has only read rights in the
directory. Thanks for your help!

cu Reiner

 
M.H. Avegaar

Delphi Developer
Sun, 18 Jan 2004 15:28:07 GMT

Re:different file access permissions from within a DELPHI app


You can't. The only solution is to start the application as a different
user.

"Reiner Kunz" <RKn...@gmx.net> schreef in bericht
news:9k7b8j$1q7$02$2@news.t-online.com...

Quote
> Hi ,

> how can I use different file access permissions from within a DELPHI
> application than the user really has? I want to write/delete files inside
a
> LAN directory from a DELPHI app where the user has only read rights in the
> directory. Thanks for your help!

> cu Reiner

Reiner Kun

Delphi Developer
Thu, 22 Jan 2004 20:43:56 GMT

Re:different file access permissions from within a DELPHI app


No, that's not true. Ever heard of the NT4-commands "SU" and "RUN AS"?

cu Reiner

M.H. Avegaar

Delphi Developer
Fri, 23 Jan 2004 16:59:32 GMT

Re:different file access permissions from within a DELPHI app


With RUN AS and SU you start the application as a different user (which I
said he had to do) !

Quote
"Reiner Kunz" <RKn...@gmx.net> wrote in message

news:9kjhev$nbv$04$1@news.t-online.com...
Quote
> No, that's not true. Ever heard of the NT4-commands "SU" and "RUN AS"?

> cu Reiner

Reiner Kun

Delphi Developer
Tue, 27 Jan 2004 04:02:12 GMT

Re:different file access permissions from within a DELPHI app


But you do SU from within the users account. Your solution seemed to be to
logout and relogin with the new account. So what....

Quote
"M.H. Avegaart" <avega...@NOSPAMmccomm.nl> wrote in message

news:9klm97$2rhj$1@scavenger.euro.net...
Quote
> With RUN AS and SU you start the application as a different user (which I
> said he had to do) !

> "Reiner Kunz" <RKn...@gmx.net> wrote in message
> news:9kjhev$nbv$04$1@news.t-online.com...
> > No, that's not true. Ever heard of the NT4-commands "SU" and "RUN AS"?

> > cu Reiner

Sundial Services International, In

Delphi Developer
Tue, 27 Jan 2004 04:54:16 GMT

Re:different file access permissions from within a DELPHI app


Something to think really-hard-about will be ... if you enable your
program to do super-magical things, then anyone who can get access to your
super-magical program will be able to do them.  That concerns me.

Being able to do something programatically, that you are authorized to do,
is convenience.

Being able to do more than you could ordinarily do, is a security risk.
Particularly if the system administrators are not very conscious of your
program's capabilities.

In article <9kuqks$u0m$0...@news.t-online.com>, "Reiner Kunz"

Quote
<RKn...@gmx.net> wrote:
> But you do SU from within the users account. Your solution seemed to be to
> logout and relogin with the new account. So what....

> "M.H. Avegaart" <avega...@NOSPAMmccomm.nl> wrote in message
> news:9klm97$2rhj$1@scavenger.euro.net...
> > With RUN AS and SU you start the application as a different user (which I
> > said he had to do) !

> > "Reiner Kunz" <RKn...@gmx.net> wrote in message
> > news:9kjhev$nbv$04$1@news.t-online.com...
> > > No, that's not true. Ever heard of the NT4-commands "SU" and "RUN AS"?

> > > cu Reiner

Jim Andrew

Delphi Developer
Thu, 29 Jan 2004 15:43:49 GMT

Re:different file access permissions from within a DELPHI app


Perhaps the user could place a record with the delete or addition request into a
database file in a public directory.

A application running with full privileges would monitor this file and if the
user's request meet all of the requirements (User name, requested item to delete
or add, etc.) this application would delete the users entry from the file and
make the requested deletion or addition to the protected file.

This way the user never has direct write/delete access to the protected database
and it is easy to log the actions.

...Jim

"Sundial Services International, Inc." wrote:

Quote
> Something to think really-hard-about will be ... if you enable your
> program to do super-magical things, then anyone who can get access to your
> super-magical program will be able to do them.  That concerns me.

> Being able to do something programatically, that you are authorized to do,
> is convenience.

> Being able to do more than you could ordinarily do, is a security risk.
> Particularly if the system administrators are not very conscious of your
> program's capabilities.

> In article <9kuqks$u0m$0...@news.t-online.com>, "Reiner Kunz"
> <RKn...@gmx.net> wrote:

> > But you do SU from within the users account. Your solution seemed to be to
> > logout and relogin with the new account. So what....

> > "M.H. Avegaart" <avega...@NOSPAMmccomm.nl> wrote in message
> > news:9klm97$2rhj$1@scavenger.euro.net...
> > > With RUN AS and SU you start the application as a different user (which I
> > > said he had to do) !

> > > "Reiner Kunz" <RKn...@gmx.net> wrote in message
> > > news:9kjhev$nbv$04$1@news.t-online.com...
> > > > No, that's not true. Ever heard of the NT4-commands "SU" and "RUN AS"?

> > > > cu Reiner

Other Threads

1. Permissions accessing a MSSQL database through ISAPI DLL on a different machine

2. Creating MS Access database within Delphi App.

3. Compacting ACCESS from within a DELPHI apps

4. Printing DBase files within Delphi App

5. Opening a Write file within a delphi app.

6. setting file permissions from inside a D3 app

7. BUG: Delphi RTL70 - Compiling OWL apps within Delphi

8. Accessing Main app data from within a DLL

9. access paradox table 2x within same app

10. Paradox Net-Access from to different Apps on the same machine