2.2.1.4.1 File_Pipe_Printer_Access_Mask
The following SMB Access Mask structure is defined for use on a file, named pipe, or printer.
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
File_Pipe_Printer_Access_Mask |
|||||||||||||||||||||||||||||||
File_Pipe_Printer_Access_Mask (4 bytes): For a file, named pipe, or printer, the value MUST be constructed using the following values. For a printer, the value MUST have at least one of the following: FILE_WRITE_DATA, FILE_APPEND_DATA, or GENERIC_WRITE.
-
Value
Meaning
FILE_READ_DATA
0x00000001
This value indicates the right to read data from the file or named pipe.
FILE_WRITE_DATA
0x00000002
This value indicates the right to write data into the file, named pipe, or printer beyond the end of the file.
FILE_APPEND_DATA
0x00000004
This value indicates the right to append data into the file, named pipe, or printer.
FILE_READ_EA
0x00000008
This value indicates the right to read the extended attributes of the file or named pipe.
FILE_WRITE_EA
0x00000010
This value indicates the right to write or change the extended attributes to the file or named pipe.
FILE_EXECUTE
0x00000020
This value indicates the right to execute the file.
FILE_DELETE_CHILD
0x00000040
This value indicates the right to delete entries within a directory.
FILE_READ_ATTRIBUTES
0x00000080
This value indicates the right to read the attributes of the file.
FILE_WRITE_ATTRIBUTES
0x00000100
This value indicates the right to change the attributes of the file.
DELETE
0x00010000
This value indicates the right to delete the file.
READ_CONTROL
0x00020000
This value indicates the right to read the security descriptor for the file or named pipe.
WRITE_DAC
0x00040000
This value indicates the right to change the discretionary access control list (DACL) in the security descriptor for the file or named pipe. For the DACL data structure, see ACL in [MS-DTYP] section 2.4.5.
WRITE_OWNER
0x00080000
This value indicates the right to change the owner in the security descriptor for the file or named pipe.
SYNCHRONIZE
0x00100000
This flag SHOULD NOT be used by the client and MUST be ignored by the server unless on a named pipe as discussed in section 3.2.4.3.1 and section 3.3.5.5.
ACCESS_SYSTEM_SECURITY
0x01000000
This value indicates the right to read or change the system access control list (SACL) in the security descriptor for the file or named pipe. For the SACL data structure, see ACL in [MS-DTYP] section 2.4.5.
MAXIMUM_ALLOWED
0x02000000
This value indicates that the client is requesting an open to the file with the highest level of access the client has on this file. If no access is granted for the client on this file, the server MUST fail the open with STATUS_ACCESS_DENIED.
GENERIC_ALL
0x10000000
This value indicates a request for all the access flags that are previously listed, except MAXIMUM_ALLOWED and ACCESS_SYSTEM_SECURITY.
GENERIC_EXECUTE
0x20000000
This value indicates a request for the following combination of access flags listed above: FILE_READ_ATTRIBUTES, FILE_EXECUTE, SYNCHRONIZE, and READ_CONTROL.
GENERIC_WRITE
0x40000000
This value indicates a request for the following combination of access flags listed above: FILE_WRITE_DATA, FILE_APPEND_DATA, FILE_WRITE_ATTRIBUTES, FILE_WRITE_EA, SYNCHRONIZE, and READ_CONTROL.
GENERIC_READ
0x80000000
This value indicates a request for the following combination of access flags listed above: FILE_READ_DATA, FILE_READ_ATTRIBUTES, FILE_READ_EA, SYNCHRONIZE, and READ_CONTROL.