TAILIEUCHUNG - Networking: A Beginner’s Guide Fifth Edition- P34

Networking: A Beginner’s Guide Fifth Edition- P34:I have run into many people over the years who have gained good even impressive working knowledge of PCs, operating systems, applications, and common problems and solutions. Many of these people are wizards with desktop computers. | Chapter 11 Securing Your Network 147 File and Directory Permissions Another type of internal security that you need to maintain for information on your network involves the users access to files and directories. These settings are actually a bit tougher to manage than user accounts because you usually have at least 20 directories and several hundred files for every user on the network. The sheer volume of directories and files makes managing these settings a more difficult job. The solution is to establish regular procedures follow them and then periodically spot-audit parts of the directory tree particularly areas that contain sensitive files. Also structure the overall network directories so that you can for the most part simply assign permissions at the top levels. These permissions will flow down to subdirectories automatically which makes it much easier to review who has access to which directories. Network operating systems allow considerable flexibility in setting permissions on files and directories. Using the built-in permissions you can enable users for different roles in any given directory. These roles control what the user can and cannot do within that directory. Examples of generic directory roles include the following Create only This type of role enables users to add a new file to a directory but restricts them from seeing editing or deleting existing files including any they ve created. This type of role is suitable for allowing users to add new information to a directory to which they shouldn t otherwise have access. The directory becomes almost like a mailbox on a street corner You can only put new things in it. Of course at least one other user will have full access to the directory to retrieve and work with the files. Read only This role enables users to see the files in a directory and even to pull up the files for viewing on their computer. However the users cannot edit or change the stored files in any way. This type of role is suitable for

• Quản trị mạng
• Kĩ thuật mạng
• Network
• tài liệu về Network
• sử dụng Network
• tạo Network
• giáo trình mạng máy tính
• mạng máy tính nâng cao
• thiết bị mạng
• thủ thuật internet
• hướng dẫn sử dụng internet
• tư liệu internet
• kĩ năng mạng
• thủ thuật windows office