Windows NTFS file protection

Variable-size, discretionary ACLs

Each file system object has an ACL and an owner.

• 13 types of access rights.

• Variable-size list of subjects.

• The owner can be a UID or a GID.

• The owner has no special rights over the object or its ACL.

  • But usually, file creators are their initial owners and have Change Permissions rights.

Subjects

• Users (UIDs)

• Groups (GIDs)

  • The group “Everyone” stands for anybody.

Access rights