PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Auditing Folder Permissions on Windows

From: Jeremy Pommerening <theaudioman () yahoo com>
Date: Fri, 4 Mar 2011 13:25:15 -0800 (PST)
shareenum and accessenum  both available on the technet site.

http://technet.microsoft.com/en-us/sysinternals/bb897442
http://technet.microsoft.com/en-us/sysinternals/bb897332

Jeremy Pommerening

CISSP,GCFA,GPEN,GAWN,GCFW,

MCSE Win2K, MCSE NT4

--- On Fri, 3/4/11, Zate <zate75 () gmail com> wrote:

From: Zate <zate75 () gmail com>
Subject: [Pauldotcom] Auditing Folder Permissions on Windows
To: "PaulDotCom Security Weekly Mailing List" <pauldotcom () mail pauldotcom com>
Date: Friday, March 4, 2011, 7:18 AM

So here is my issue.
I am having to basically output the ACL's (ie user/group and it's permissions) for about 9 shares on our network.  So 
in the form of \\server\place\folder

i need to know the ACL on every folder under that top one to tell if it's changed from what it should be.
so far I've tried doing it in perl and in ruby, both run into some limitations with the sheer number of folders or with 
dealing with the depth of recursion.

tried it in Powershell, hits a limit in the length of the folder names.
Any tools out there that do this stuff?  This is kind of centered around SOX reporting, so I am sure I am not the only 
one trying to do this.  

Ideas?
thanks.
Zate



-----Inline Attachment Follows-----

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


      
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: