Python中文网 - 问答频道, 解决您学习工作中的Python难题和Bug
Python常见问题
我在学校做一个信息安全保证项目,我应该使用Python检查、编辑、删除或插入文件夹/文件权限[只读、无权限、读写、删除所有权限等]。我试着在论坛周围寻找可行的解决方案,但我遵循了一些代码,这些代码最终无法完成任务。我将非常感谢你的帮助,提前谢谢你。你知道吗
def getFileACL(self):
myPath = self.fileName
"""
Get Access Control List of a file/directory
@return: PyACL object
"""
info = win32security.DACL_SECURITY_INFORMATION
sd = win32security.GetFileSecurity(myPath, info)
acl = sd.GetSecurityDescriptorDacl()
print("yaa")
return acl
def grantAccessToFile(self, myPath, userName='everyone'):
"""
Allow Permission to userName on a file/directory
@param file: path of the file/dir
@param userName: name of the user to add to the acl of the file/dir
"""
self.logger.info('Granting access to file %s' % myPath)
import ntsecuritycon as con
if os.path.isfile(myPath) or os.path.isdir(myPath):
info = win32security.DACL_SECURITY_INFORMATION
sd = win32security.GetFileSecurity(myPath, info)
acl = self.getFileACL(myPath)
user, domain, acType = win32security.LookupAccountName("", userName)
acl.AddAccessAllowedAce(win32security.ACL_REVISION, con.FILE_GENERIC_READ | con.FILE_GENERIC_WRITE | con.FILE_DELETE_CHILD | con.DELETE | win32file.FILE_SHARE_DELETE, user)
sd.SetSecurityDescriptorDacl(1, acl, 0)
win32security.SetFileSecurity(myPath, win32security.DACL_SECURITY_INFORMATION, sd)
else:
self.logger.info('File/Directory %s is not valid' % myPath)
raise IOError('myPath %s does not exist' % myPath)
def add_deny_ace(path, rights):
"""Remove rights from a path for the given groups."""
if not os.path.exists(path):
raise WindowsError('Path %s could not be found.' % path)
if rights is not None:
sd = win32security.GetFileSecurity(path, win32security.DACL_SECURITY_INFORMATION)
dacl = sd.GetSecurityDescriptorDacl()
# set the attributes of the group only if not null
dacl.AddAccessDeniedAceEx(win32security.ACL_REVISION_DS, win32security.CONTAINER_INHERIT_ACE | win32security.OBJECT_INHERIT_ACE, rights, USER_SID)
sd.SetSecurityDescriptorDacl(1, dacl, 0)
win32security.SetFileSecurity(path, win32security.DACL_SECURITY_INFORMATION, sd)
def _remove_deny_ace(path):
USER_SID = win32security.LookupAccountName("", win32api.GetUserName())[0]
"""Remove the deny ace for the given groups."""
if not os.path.exists(path):
raise WindowsError('Path %s could not be found.' % path)
security_descriptor = win32security.GetFileSecurity(path, win32security.DACL_SECURITY_INFORMATION)
dacl = security_descriptor.GetSecurityDescriptorDacl()
# if we delete an ace in the acl the index is outdated and we have
# to ensure that we do not screw it up. We keep the number of deleted
# items to update accordingly the index.
num_delete = 0
for index in range(0, dacl.GetAceCount()):
ace = dacl.GetAce(index - num_delete)
# check if the ace is for the user and its type is 1, that means
# is a deny ace and we added it, lets remove it
if USER_SID == ace[2] and ace[0][0] == 1:
dacl.DeleteAce(index - num_delete)
num_delete += 1
security_descriptor.SetSecurityDescriptorDacl(1, dacl, 0)
win32security.SetFileSecurity(path, win32security.DACL_SECURITY_INFORMATION, security_descriptor)
def set_no_rights(self, path):
"""Set the rights for 'path' to be none.
Set the groups to be empty which will remove all the rights of the file.
"""
os.chmod(path, 0o000)
rights = con.FILE_ALL_ACCESS#win32file.FILE_ALL_ACCESS
self._add_deny_ace(path, rights)
def set_file_readonly(path):
"""Change path permissions to readonly in a file."""
# we use the win32 api because chmod just sets the readonly flag and
# we want to have more control over the permissions
rights = con.FILE_WRITE_DATA | con.FILE_APPEND_DATA | con.FILE_GENERIC_WRITE
# the above equals more or less to 0444
_add_deny_ace(path, rights)
def set_file_readwrite(self, path):
"""Change path permissions to readwrite in a file."""
# the above equals more or less to 0774
self._remove_deny_ace(path)
os.chmod(path, stat.S_IWRITE)
def set_dir_readonly(self, path):
"""Change path permissions to readonly in a dir."""
rights = con.FILE_WRITE_DATA | con.FILE_APPEND_DATA
# the above equals more or less to 0444
self._add_deny_ace(path, rights)
def set_dir_readwrite(self, path):
"""Change path permissions to readwrite in a dir.
Helper that receives a windows path.
"""
# the above equals more or less to 0774
self._remove_deny_ace(path)
# remove the read only flag
os.chmod(path, stat.S_IWRITE)
Tags: thetopathselfdefnotsdcon
热门问题
- 是什么导致导入库时出现这种延迟?
- 是什么导致导入时提交大内存
- 是什么导致导入错误:“没有名为modules的模块”?
- 是什么导致局部变量引用错误?
- 是什么导致循环中的属性错误以及如何解决此问题
- 是什么导致我使用kivy的代码内存泄漏?
- 是什么导致我在python2.7中的代码中出现这种无意的无限循环?
- 是什么导致我的ATLAS工具在尝试构建时失败?
- 是什么导致我的Brainfuck transpiler的输出C文件中出现中止陷阱?
- 是什么导致我的Django文件上载代码内存峰值?
- 是什么导致我的json文件在添加kivy小部件后重置?
- 是什么导致我的python 404检查脚本崩溃/冻结?
- 是什么导致我的Python脚本中出现这种无效语法错误?
- 是什么导致我的while循环持续时间延长到12分钟?
- 是什么导致我的代码膨胀文本文件的大小?
- 是什么导致我的函数中出现“ValueError:cannot convert float NaN to integer”
- 是什么导致我的安跑的时间大大减少了?
- 是什么导致我的延迟触发,除了添加回调、启动反应器和连接端点之外什么都没做?
- 是什么导致我的条件[Python]中出现缩进错误
- 是什么导致我的游戏有非常低的fps
热门文章
- Python覆盖写入文件
- 怎样创建一个 Python 列表?
- Python3 List append()方法使用
- 派森语言
- Python List pop()方法
- Python Django Web典型模块开发实战
- Python input() 函数
- Python3 列表(list) clear()方法
- Python游戏编程入门
- 如何创建一个空的set?
- python如何定义(创建)一个字符串
- Python标准库 [The Python Standard Library by Ex
- Python网络数据爬取及分析从入门到精通(分析篇)
- Python3 for 循环语句
- Python List insert() 方法
- Python 字典(Dictionary) update()方法
- Python编程无师自通 专业程序员的养成
- Python3 List count()方法
- Python 网络爬虫实战 [Web Crawler With Python]
- Python Cookbook(第2版)中文版
目前没有回答
相关问题 更多 >
编程相关推荐