tags:

views:

18

answers:

1
Q: 

Split write permission into append and delete permission

I'm writing a small authorization systems which has read, write, execute, append and delete permissions. If someone can write he can obviously also delete and append, so delete and append are part of write. I think all write operations could be expressed as append and delete and wonder if there would be any reason to distinguish between write and delete+append.

So the question is: Do you know any reason to distinguish between delete+append and write?

A: 

I can't think of any. You might want to read up on how different operating systems implement file permissions.

One other thing you might consider is whether write permissions also include read permissions. It might make sense to do so in your case, but you might also consider a case where you want to create a "drop box" where someone can write a file but not be able to subsequently read it.

Ken Liu  2010-03-03 14:31:50

related questions

Can't copy file with appropriate permissions using FileIOPermission
GetProcessesByName() and Windows Server 2003 scheduled task
Starting a process in C# with username & password throws "Access is Denied" exception
How do you set directory permissions in NSIS?
PHP: How to check if a directory is writeable?
Sharepoint Item Level Access & performance
sudo echo "something" >> /etc/privilegedFile doesn't work... is there an alternative?
What is the best way to create a security architecture?
Hierarchical Group Permissions Theory/Resources?
Why is access denied when installing SSL cert on IIS 5?
What databases do I have permissions on
Can an iPhone App Be Run as Root?
SQLite/PHP read-only?
Multiple permission types (roles) stored in database as single decimal
SharePoint Permissions
CakePHP ACL Database Setup: ARO / ACO structure?
LINQ and Database Permissions
What's the best way to implement a SQL script that will grant select, references, insert, update, and delete permissions to a database role on all the user tables in a database?
php scripts writing to non-world-writable files
How do I detect if a function is available during JNLP execution?
Implementing permissions in PHP
Access Control Lists & Access Control Objects, good tutorial?
In Visual Studio you must be a member of Debug Users or Administrators to start debugging. What if you are but it doesn't work?
Where should I put my log file for an asp.net application?
What is the best way to handle multiple permission types?