On Sun, 1 Feb 2004 17:06:14 -0500 Sanford Whiteman said something about Re[2]: [Declude.JunkMail] LOGFILE action:
> > Administrator is generally logged in to the machine. > > That's no more meaningful than 'root is generally logged on to the > machine' would be in the *nix world. > > The current interactive user can have mapped drives and network access > that service account--the user that appears in the Services control > panel as the security context under which each IMail service > runs--does not have. By default, most services run in the SYSTEM > context, which is sandboxed away from network access. You have to > change this account to allow your services to access any network file > shares. Any processes created by such a service (such as DECLUDE.EXE) > will, by default, run the same security context as the service itself > (IMail does not apply any new context to processes created by its > EXEs, but applications can be coded that way). > > > I'm learning a lot more about Windows networking/file sharing than I > > wanted to just messing with these log files. > > Well, shouldn't learning about Windows be a natural part of being the > admin of a Windows box? :) > > --Sandy I have about 6 hours until I go home for my "weekend" (which this week just means changing hats and working as a hardware tech Mon/Tues/Wed at another location). I've got the satellite radio plugged in flipping between jam bands, reggae, and blues just sort of poking around the innards of the Win2K box now. Thanks for your explanations. I've learned enough to know that I haven't learned enough to make it work. What search engines do you use for technical questions? Google is giving me a headache with it's paid placement spam download/advertising search page sites in the first 5 pages of every search that has the name of any piece of software. Understand that what I've discovered about Win2K is probably moot because I have also discovered that Declude won't use a UNC path. I set the UNC path to the same space that I have shared as drive L: then gave Declude a bogus command that would force a log write like it did when I had it pointed to the share letter -- it failed to write to the log file. I did figure out how to set up a persistent, lettered, share at boot time using autoexnt from the resource kit (the CD is around here somewhere) so that might give access to the lettered drive even though there's no interactive user. It has a /interactive switch that I haven't found further documentation on. The IMail services are connecting as the "LocalSystem" user. But I can't find that user in any of the other control panel spots to "mess with" what it has access to. I though it would be nice if Declude would send to the syslog daemon but then I'd have to run two syslog daemons on different ports to be able to write two different logs to my log drive. The Declude and IMail log formats are different so I'd need two different syslog daemons to force the separate logfile entry formats to keep analyzers from breaking. And WinXP doesn't seem to give a permissions dialog that looks like the one in Win2K. I can't find a panel that allows me to add users and change read/write/create permissions. Just a single checkbox that says "Allow remote users to change my files". That was even when logged in as Administrator. I'll just keep it writing to the local drive and finish my file moving batch file. It should be an easier write now that I don't have to play with getting the IMail logs as well. Now if I could enable the second NIC on the mail machine and force all traffic destined for the log server through that... ;-) -- Gerald V. Livingston II Configure your Email to send TEXT ONLY -- See the following page: http://expita.com/nomime.html --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
