cie138l@vaxc.cc.monash.edu.au (04/24/91)
Greetings all. As a joint supervisor of a Novell LAN (Netware 386 v3.10 Rev A) I would appreciate any assistance with the following problem. Our network consists mainly of IBM-PC's (many of them diskless), and is running DOS 3.3 We are having what appears to be a FILE ACCESS problem. We wish to restrict certain users to only file read (and program use) access in certain network directories. Accordingly we set the directory rights for those users to FILE READ and FILE SCAN only. The files in the directory are set to READ ONLY, SHAREABLE, and in some instances EXECUTE ONLY. This setup worked in the past, before our recent upgrade to Netware 386. Our problem is that the restricted users are unable to access files in the directory during program execution. This applies to both data files and other executable files (eg CHAINED modules in BASIC programs). A couple of examples of the problem are described below. The only solution we have found so far is to grant the restricted users SUPERVISORY rights in the directory - which rather defeats the purpose. Any ideas/solutions greatly appreciated. Thanks in advance, Andrew Haines EMAIL: cie138l@vaxc.cc.monash.edu.au Footnote: descriptions of file access problems 1) Quick Basic program involving chaining. Program consists of a number of chained executable files to be run with BRUN45.EXE. Restricted user has FILE READ and FILE SCAN rights in the directory and all files are set to the following attributes: READ ONLY, SHAREABLE, EXECUTE ONLY. The program will run correctly for anyone with supervisor access. For restricted users the initial program module will work but will fail to chain to the next module (FILE NOT FOUND ERROR). 2) Microsoft FORTRAN/C (mixed lang.) program. Program prompts for the name of a data file to read at the start of its execution. The program and some data files were installed in the directory with all files being set to READ ONLY, SHAREABLE and the program in addition being EXECUTE ONLY. When run by a restricted user with FILE READ and FILE SCAN rights in the directory the program insists that the data files do not exist - despite the fact that the restricted user with only these rights can copy the files from the network directory to a floppy. With SUPERVISORY rights in the directory the restricted user can use the data files OK.