git.openafs.org Git - openafs.git/commit

Windows: QuerySecurity deny access to SACL

The SACL requires System Access Level. Requests for SACL by
end user applications must be denied. Permit access to Owner,
Group, DACL and Label but not SACL.

This change permits executables to be initiated from drive
letter mappings.

Change-Id: Ibf847261f0c36dc7b6175b0536657161158cd44f
Reviewed-on: http://gerrit.openafs.org/8483
Tested-by: BuildBot <buildbot@rampaginggeek.com>
Reviewed-by: Rod Widdowson <rdw@steadingsoftware.com>
Reviewed-by: Jeffrey Altman <jaltman@your-file-system.com>
Tested-by: Jeffrey Altman <jaltman@your-file-system.com>

author	Jeffrey Altman <jaltman@your-file-system.com>
	Tue, 20 Nov 2012 06:23:08 +0000 (01:23 -0500)
committer	Jeffrey Altman <jaltman@your-file-system.com>
	Fri, 23 Nov 2012 15:48:49 +0000 (07:48 -0800)
commit	5acf8b7f98ecd3daa721e60b49c7a582c7ce3b8d
tree	22ec3d844afb3d8fbb317f8dffd47b1cdcfe802c	tree \| snapshot
parent	6d37315a9c4fa4aae99715dd18827fcc0b543ba3	commit \| diff