Hiding folders from Specific Users

-1

I use computers in a shared house, the computers are running Windows 7 and Windows Vista and are connected to a network with Windows Server 2003 as the DC. I want to hide certain folders from other users, and not just using the hidden folder attribute. I know I can limit the permissions on folders to grant / deny users acees but was wondering if there is a way just not to display the folders to certain users so they don't even know they're there. e.g. User A will see the contents of the S drive asFolder1, Folder2, Folder3. User B will see the contents of the S drive as Folder1, Folder2. Perhaps I'm looking at this the wrong way but any advice would be appreciated.

I'm going along the mothod of "What people don't know is there they aren't curious about"

Joe Taylor

Posted 2010-02-19T11:04:57.900

Reputation: 11 533

Downvoter care to explain... No? I thought not. – Joe Taylor – 2012-08-13T14:53:49.567

Answers

Sounds like you need Access Based Enumeration

SqlACID

Posted 2010-02-19T11:04:57.900

Reputation: 430

That sounds perfect. – Joe Taylor – 2010-02-19T12:42:38.587

Your looking at it the wrong way.

Just make sure you create your folder structure in such a way that users only see the folders they are meant to see when drives are mapped. The NT level security will allow you to remove complete permissions on a folder, but will not hide the folder from being seen, whether mapped or when accessing the server using network neighbourhood.

If people are not meant to see it, then put it in a place they can't get too.

BinaryMisfit

Posted 2010-02-19T11:04:57.900

Reputation: 19 955

1The point is that the users think they have access to everything on the machine. I'm trying to avoid the access denied situation – Joe Taylor – 2010-02-19T11:39:39.037

@Joe How would they know if they can't see it? Are you sharing the whole drive? – BinaryMisfit – 2010-02-19T12:01:17.220

The whole drive is shared. Its a raided drive on the server that all users use to keep their documents, photos etc safer than if they were just on a standard HDD . I think I'm just going to have to go with permissions but was hoping to avoid it if possible. – Joe Taylor – 2010-02-19T12:41:52.783

@Joe. Based on your accepted answer I stand corrected :) – BinaryMisfit – 2010-02-19T13:00:35.570

1thanks for your time anyway, I'd never even heard of access based enumeration but shall be recommending it at work too. – Joe Taylor – 2010-02-19T13:26:11.637

You could create (and share) different directories for each users and create junction and/or hard link to only the sub-directories they could access

fluxtendu

Posted 2010-02-19T11:04:57.900

Reputation: 6 701