This browser does not support basic Web standards, preventing the display of our site's intended design. May we suggest that you upgrade your browser?

Windows XP

Permission Types: An Overview

When you set permissions, you are specifying what level of access users have to a folder and what actions they can perform. Specifically, you are setting what users can do within the folder such as save, delete, create a new folder, or some other action. There are several different types of permission levels. For example, there is a permission type commonly called Museum, which allows users to see files and/or folders but not to "touch" the files (i.e., make changes to or delete the files). Another permission type is referred to as Black Hole because once users submit a document, they never see it again in the folder. The files, however, are still accessible to the owner of the folder in which they were saved. 

These different types of permissions can be set using the Permission Entry dialog box. For information on how to access this dialog box, please start with the document Advanced Folder Level Permissions. This document contains information on the following:

return to topConsiderations

The settings listed under each type of permission are merely a guide; you may modify these settings as you see fit. For example, under the Black Hole permission type, the example allows users to create folders. If this is not what you what, simply do not check the Create folders / Append data box (you do not have to check Deny). The same applies to all other permission types.

Be aware that different types of permissions will allow for different levels of security. The Black Hole and Museum settings offer the most security; Free-for-All offers the least and is only appropriate where security is not an issue.

Important Notes

return to topBlack Hole

Security Level

Suggested Use

High

Applied to a folder to which students submit assignments that cannot be changed/edited.

Under this permission setting, a user will never see a file they save to the folder. However, the file is still accessible to the owner of the folder. Owners of folders have full permission within the folder.

To set a file or folder with permissions of this type:

  1. Establish Write permission for all users
    Refer to Setting Permissions.

  2. Using Advanced Folder Level Permissions, in the Permission Entry for... dialog box, in the Permissions section, under the Allow heading check the following:

  • Traverse folder / Execute file
  • Read attributes
  • Create files / Write data
  • Create folders / Append data
  • Write attributes
  • Write extended attributes
  • Read permissions

All other checkboxes under both the Allow and Deny headings should be left unchecked.

return to topMuseum

Security Level

Suggested Use
High Applied to a folder to which an instructor posts class materials

This permission setting allows users to "see but not touch." That is, they can view and access the contents of the folder but cannot make changes to its content or save any kind of file to the folder.

To set a file or folder with permissions of this type:

  1. Establish Read permission for all users
    Refer to Setting Permissions.

  2. Using Advanced Folder Level Permissions, in the Permission Entry for... dialog box, in the Permissions section, under the Allow heading check the following:

  • Traverse folder / Execute file
  • List folder / Read data
  • Read attributes
  • Read extended attributes
  • Read permissions

All other checkboxes under both the Allow and Deny headings should be left unchecked.

return to topEdit Your Own Stuff

Security Level

Suggested Use

Medium-High

Applied to a folder to which students submit assignments that can be changed/edited/updated.

Permissions under this setting are just as they sound: owners/authors of documents can edit their own documents and files, but cannot do so for documents and files owned by others. Any user can create a file and edit it, but a user cannot edit any file that is not his or her own.

To set a file or folder with permissions of this type:

  1. Establish List Folder Contents and Write permissions for all users
    Refer to Setting Permissions.

  2. Using Advanced Folder Level Permissions, in the Permission Entry for... dialog box, in the Permissions section, under the Allow heading check the following:

  • Traverse folder / Execute file
  • List folder / Read data
  • Read attributes
  • Read extended attributes
  • Create files / Write data
  • Create folders / Append data
  • Write attributes
  • Write extended attributes
  • Read permissions

All other checkboxes under both the Allow and Deny headings should be left unchecked.

return to topEdit and Snoop

Security Level

Suggested Use

Medium-Low

Applied to a folder to be used by a group working on related documents of a project - individuals can edit only their own.

This permission setting has a fairly low security level but is useful in some instances. Please be aware that users can read anyone's files (however, users cannot edit anyone's files).

To set a file or folder with permissions of this type:

  1. Establish Read and Write permissions for all users
    Refer to Setting Permissions.

  2. Using Advanced Folder Level Permissions, in the Permission Entry for... dialog box, in the Permissions section, under the Allow heading check the following:

  • Traverse folder / Execute file
  • List folder / Read data
  • Read attributes
  • Read extended attributes
  • Create files / Write data
  • Create folders / Append data
  • Write attributes
  • Write extended attributes
  • Read permissions

All other checkboxes under both the Allow and Deny headings should be left unchecked.

return to topFree-for-All

Security Level

Suggested Use

Very Low

Applied to a folder to be used by a group working on related documents of a project. All files are available for editing by anyone in the group.

This permission setting is primarily for those not concerned about security. As the name implies, users can mostly do what they want, with the exception of deleting subfolders and files, changing permissions, and taking ownership of files that are not theirs.

To set a file or folder with permissions of this type:

  1. Establish Modify permission for all users
    Refer to Setting Permissions.

  2. Using Advanced Folder Level Permissions, in the Permission Entry for... dialog box, in the Permissions section, under the Allow heading check the following:

  • Traverse folder / Execute file
  • List folder / Read data
  • Read attributes
  • Read extended attributes
  • Create files / Write data
  • Create folders / Append data
  • Write attributes
  • Write extended attributes
  • Delete
  • Read permissions

All other checkboxes under both the Allow and Deny headings should be left unchecked.

Excellence. Our Measure. Our Motto. Our Goal.