Re: [DUG]: MS Security problems

[Robert martin]

Title: Message

Great thanks very much.  There is C++ code there which may have some pointers (no pun intended) and some the other stuff about Set(Get)UserObjectSecurity  should be use full.  :))   Rob Martin Software Engineer   phone 03 377 0495 fax 03 377 0496    web www.chreos.com ----- Original Message ----- From: Myles Penlington To: Multiple recipients of list delphi Sent: Thursday, September 25, 2003 9:05 AM Subject: RE: [DUG]: MS Security problems Whoops, got the wrong end of the stick - in the last message.   Have a look at this site - It will get you started. This guy writes the security articles and books for msdn.   http://www.develop.com/kbrown/security/samples.htm   The sample about Interactive Window Station / Desktop DACL Editor may be of use together with the Session Viewer   Then you will need to use GetFileSecurity/SetFileSecurity   Myles.   -----Original Message----- From: Robert martin [mailto:[EMAIL PROTECTED] Sent: Thursday, 25 September 2003 08:41 To: Multiple recipients of list delphi Subject: Re: [DUG]: MS Security problems We could do that (and may end up doing so) but we thought that we would actually follow MS recommendations to avoid problems with future windows versions.  If the MS way proves to be too much hassle we probably will end up doing that.     Rob Martin Software Engineer   phone 03 377 0495 fax 03 377 0496    web www.chreos.com ----- Original Message ----- From: Allan, Samuel To: Multiple recipients of list delphi Sent: Wednesday, September 24, 2003 4:54 PM Subject: RE: [DUG]: MS Security problems Why not just use your application's install directory, or some sub-directory? -----Original Message----- From: Robert martin [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 24 2003 4:34 p.m. To: Multiple recipients of list delphi Subject: [DUG]: MS Security problems Hi All   Our app has used the registry for storing settings but this causes problems on multi-user machines where some users don't have high enough access rights to save settings.  So we decided to change to storing settings in a simple INI.  We are using CSIDL_COMMON_APPDATA as recommended by MS. Guess what, same problem.  users don't have write rights.    MS help says... This folder should be used for application data that is not user specific. For example, an application may store a spell check dictionary, a database of clip-art or a log file in the CSIDL_COMMON_APPDATA folder. This information will not roam and is available to anyone using the computer. By default, this location is read-only for normal (non-admin, non-power) Users. If an application requires normal Users to have write access to an application specific subdirectory of CSIDL_COMMON_APPDATA, then the application must explicitly modify the security on that sub-directory during application setup. The modified security must be documented in the Vendor Questionnaire.   How do you do this in Delphi Code?  Any help would be appreciated.     Rob Martin Software Engineer   phone 03 377 0495 fax 03 377 0496    web www.chreos.com