djnowak@luna.UUCP (David Nowak) (10/26/88)
A friend of mine is running an Appletalk network. He is seeking a way to protect document files from unauthorized copying. I.E., he wants the users to be able to view these files within folders and be able to read the contents of these files, but not for unauthorized user to copy or delete them. Does anyone know of a way to do this? David J Nowak djnowak@luna.dpl.scg.hac.com
teener@Apple.COM (Michael Teener) (10/28/88)
In article <209@luna.UUCP>, djnowak@luna.UUCP (David Nowak) writes: > A friend of mine is running an Appletalk network. He is seeking a way to > protect document files from unauthorized copying. I.E., he wants the users > to be able to view these files within folders and be able to read the > contents of these files, but not for unauthorized user to copy or delete > them. Does anyone know of a way to do this? There is no way to prevent someone who has the ability to view a file from also copying it. You can, however, set up a "group" using the Appleshare Admin application and assign authorized users to that group. Then set up the appropriate folders with group read-only access, and no access to others. That will at least keep the copying down to people who have been told not to. ==== Michael Teener, Apple Computer Inc. 408-974-3521 ==== uucp:{sun,nsc,voder,decwrl}!apple!teener Internet:teener@apple.com ==== Cheetah:N9900 ====
ajz@mentor.cc.purdue.edu (T. Tim Hsu) (11/01/88)
The easiest method to keep users from changing the system folder is to
turn it invisible. What they can't see, they won't play with. The computer
still boots because the blessed system folder is still on the hard disk (use
DiskTop on it, you'll see). You can turn it invisible by using the Copy Tools
from your Copy II Mac disk (you DO have it don't you?) or by setting the flag
using ResEdit (although that is such an overkill).
Oh yeah, while you are at it, you might as well set the file protect flag
also. That will keep users from copying it should they possess something like
DiskTop. This won't stop everyone, since someone will undoubtably know how
to undo all of these changes, but it will stop most of them.
T. Tim Hsu PS I happen to be staff, but
don't tell anyone -- it'll
...pur-ee\!ajz@mentor.cc.purdue.edu ruin my reputation.ajq@mace.cc.purdue.edu (John O'Malley) (11/01/88)
In article <19608@apple.Apple.COM> teener@Apple.COM (Michael Teener) writes: >In article <209@luna.UUCP>, djnowak@luna.UUCP (David Nowak) writes: >> A friend of mine is running an Appletalk network. He is seeking a way to >> protect document files from unauthorized copying. I.E., he wants the users >> to be able to view these files within folders and be able to read the >> contents of these files, but not for unauthorized user to copy or delete >> them. > >There is no way to prevent someone who has the ability to view a file from >also copying it. >==== Michael Teener, Apple Computer Inc. 408-974-3521 ==== AppleShare version 2.0.1 DOES HAVE a way to fully copy-protect files (both documents and applications). The administrator has to display the info window of the file you want locked, check "Locked" and "Copy-Protected" boxes there, and then save changes. You're really combining two features, the ability to lock a file or folder and the ability to copy-protect a file. You can, of course, still make the folder accessable to only a certain groups of users. Combine these two features and you can have applications set at what we could call "execute only." A user can circumvent copy-protection for a document by opening it and then saving it under a different name. Note again that the copy-protection feature is part of AppleShare File Server version 2.0.1. This can not be done in version 1.0. We use the newer version here, and having the execute-only mode is nice. See pages 150 and 151 of the Administrator's Guide that comes with 2.0.1. John O'Malley / Macintosh / Purdue University / (317) mace.cc.purdue.edu!ajq / Project Specialist / Computing Center / 494-9944
pv9y@vax5.CIT.CORNELL.EDU (11/04/88)
Why don't you just assign the folder readonly access to the group and then go in with ResEdit or Fedit or Disktop or something like that and click the protected or NoCopy box? The users can't change the settings and they shouldn't be able to copy the files then. Adam Engst pv9y@vax5.cit.cornell.edu (that address might not work. Cornell Computer Services, in its infinite wisdom or lack thereof just changed its name to Cornell Information Technologies (which means absolutely nothing as far as I can tell) and changed all the hostnames, potentially destroying all mail)