6hfxulw\ $xglw 8wlolw, Hvfulswlrq, 6\qwd – Citrix Systems Citrix MetaFrame Application for Windows 1.8 User Manual



0HWD)UDPH $GPLQLVWUDWRUªV *XLGH

$&/&+(&. 6HFXULW\ $XGLW 8WLOLW\

'HVFULSWLRQ

This command is identical to query acl. Aclcheck performs a file security audit
on the specified directory or drive letter. Aclcheck reports file accesses allowed
by accounts other than Administrator, Administrators, or SYSTEM. Aclcheck can
also generate a report of registry keys that have Delete, Write, Add, Link, Change
Permissions, or Take Ownership permissions for non-administrator users. The
system security level (Low, Medium, or High) is also reported.

6\QWD[

aclcheck [path] [/registry_only | /files_only [/ignore_execute]] [/?]

3DUDPHWHU

path

The name of the drive or directory path to audit.

2SWLRQV

/registry_only

Checks only the system registry.

/files_only

Checks only disk files.

/ignore_execute

Do not report files with user Execute permissions.

/? (help)

Displays the syntax for the utility and information about the utility’s options.

5HPDUNV

Aclcheck generates a report of potential security exposures on a MetaFrame
server. Aclcheck reports excessive file or registry accesses allowed by accounts
other than Administrator, Administrators, and SYSTEM.

The file report shows any files that have Delete, Write, Append, Execute (unless
the /ignore_execute option is specified), Change Permissions, or Take Ownership
permissions for non-administrator users.

The registry report shows any registry keys that have Delete, Write, Add, Link,
Change Permissions, or Take Ownership permissions for non-administrator users.