winternals erd commander pro 1.03 用户手册

ERD Commander 

Winternals Software LP

 

Page 12  

Gives Everyone full access to directories or files. 

Processes files in all subdirectories in the specified path 

This command is a custom ERD Commander command. It is possible to 

render a NT system unbootable by inadvertently applying security restrictions 

to NTFS files or directories that prevent NT from loading files it requires. The 

ACCESS command will add a security entry to the security attributes of 

specified files or directories which gives the Everyone group full access. The 

Everyone group includes all groups and accounts, so this is the most 

permissive security setting possible.  

If the file or directory specified is inaccessible because the System account or 

Administrators group is denied access, ERD Commander will first take 

ownership for the Administrators group. This allows it to then modify the 

security settings to give Everyone full access. 

The command can even be applied to root directories of drives that have 

been totally locked down. Such drives will show up in the drive mapping as 

having a file system type of “???”. Simply specify the directory, e.g. “G:\”, as 

the parameter to allow Everyone full access to the root directory. Files and 

directories within the drive can then be unlocked through subsequent 

applications of the ACCESS command. 

NOTE: Because this command makes files and directories fully accessible to 

any user, which opens potential security holes, you should lock-down files 

and directories on which it is used after the system is booted normally.