DACL 类型编辑本段两种类型的ACL:自由决定的(DACL)和系统的
(SACL)。DACL管制对象访问,SACL管制审核。
1
public static Boolean SetDirPermission(String strSitePath, String strUserName,ref string ErrorMsg)
2![]()
2
SECURITY_INFORMATION
The SECURITY_INFORMATION type identifies the object-related security information being set or queried. This security information includes:
- The owner of an object
- The primary group of an object
- The discretionary access control list (DACL) of an object
- The system access control list (SACL) of an object
typedef DWORD SECURITY_INFORMATION, *PSECURITY_INFORMATION;
Remarks
Windows 2000: New SECURITY_INFORMATION members only work with the SetNamedSecurityInfo function. These new members are not returned in the structure returned by other security functions such as GetNamedSecurityInfo or ConvertStringSecurityDescriptorToSecurityDescriptor.
Each item of security information is designated by a bit flag. The following values specify the bits.
| Value | Meaning |
|---|---|
| DACL_SECURITY_INFORMATION | Indicates the DACL of the object is being referenced. |
| GROUP_SECURITY_INFORMATION | Indicates the primary group identifier of the object is being referenced. |
| OWNER_SECURITY_INFORMATION | Indicates the owner identifier of the object is being referenced. |
| PROTECTED_DACL_SECURITY_INFORMATION | Windows 2000/XP: Indicates the DACL cannot inherit ACEs. |
| PROTECTED_SACL_SECURITY_INFORMATION | Windows 2000/XP: Indicates the SACL cannot inherit ACEs. |
| SACL_SECURITY_INFORMATION | Indicates the SACL of the object is being referenced. |
| UNPROTECTED_DACL_SECURITY_INFORMATION | Windows 2000/XP: Indicates the DACL inherits ACEs from the parent object. |
| UNPROTECTED_SACL_SECURITY_INFORMATION | Windows 2000/XP: Indicates the SACL inherits ACEs from the parent object. |