批处理吧 关注:12,555贴子:60,056
- 23回复贴,共1页
echo off
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "p=x y z"
for %%a in (%p%) do (
cacls %%a: | findstr /i "Everyone:(OI)(CI)R"
if %ERRORLEVEL% == 0 (echo y | cacls %%a: /c /g Everyone:f) else (echo y | cacls %%a: /c /g Everyone:r)
)
pause
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "p=x y z"
for %%a in (%p%) do (
cacls %%a: | findstr /i "Everyone:(OI)(CI)R"
if %ERRORLEVEL% == 0 (echo y | cacls %%a: /c /g Everyone:f) else (echo y | cacls %%a: /c /g Everyone:r)
)
pause
echo off
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "p=x y z"
for %%a in (%p%) do (
((cacls %%a: | find "Authenticated Users:(OI)(CI)R") && (cacls %%a: /e /c /p "Authenticated Users:f")) || cacls %%a: /e /c /p "Authenticated Users:r"
)
pause
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "p=x y z"
for %%a in (%p%) do (
((cacls %%a: | find "Authenticated Users:(OI)(CI)R") && (cacls %%a: /e /c /p "Authenticated Users:f")) || cacls %%a: /e /c /p "Authenticated Users:r"
)
pause
echo off
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "user=Authenticated Users"
set "p=x y z"
for %%a in (%p%) do (
((cacls %%a: | find "%user%:(OI)(CI)R") && (cacls %%a: /e /c /p "%user%:f")) || (cacls %%a: /e /c /p "%user%:r" & icacls %%a: /c /deny "%user%:(WD,AD,WA,WEA)")
)
pause
加了拒绝虽然显示实际上是没有权限的
这里有说明,可以自己改这一段"%user%:(WD,AD,WA,WEA)
简单权限序列:
N - 无访问权限
F - 完全访问权限
M - 修改权限
RX - 读取和执行权限
R - 只读权限
W - 只写权限
D - 删除权限
在括号中以逗号分隔的特定权限列表:
DE - 删除
RC - 读取控制
WDAC - 写入 DAC
WO - 写入所有者
S - 同步
AS - 访问系统安全性
MA - 允许的最大值
GR - 一般性读取
GW - 一般性写入
GE - 一般性执行
GA - 全为一般性
RD - 读取数据/列出目录
WD - 写入数据/添加文件
AD - 附加数据/添加子目录
REA - 读取扩展属性
WEA - 写入扩展属性
X - 执行/遍历
DC - 删除子项
RA - 读取属性
WA - 写入属性
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "user=Authenticated Users"
set "p=x y z"
for %%a in (%p%) do (
((cacls %%a: | find "%user%:(OI)(CI)R") && (cacls %%a: /e /c /p "%user%:f")) || (cacls %%a: /e /c /p "%user%:r" & icacls %%a: /c /deny "%user%:(WD,AD,WA,WEA)")
)
pause
加了拒绝虽然显示实际上是没有权限的
这里有说明,可以自己改这一段"%user%:(WD,AD,WA,WEA)
简单权限序列:
N - 无访问权限
F - 完全访问权限
M - 修改权限
RX - 读取和执行权限
R - 只读权限
W - 只写权限
D - 删除权限
在括号中以逗号分隔的特定权限列表:
DE - 删除
RC - 读取控制
WDAC - 写入 DAC
WO - 写入所有者
S - 同步
AS - 访问系统安全性
MA - 允许的最大值
GR - 一般性读取
GW - 一般性写入
GE - 一般性执行
GA - 全为一般性
RD - 读取数据/列出目录
WD - 写入数据/添加文件
AD - 附加数据/添加子目录
REA - 读取扩展属性
WEA - 写入扩展属性
X - 执行/遍历
DC - 删除子项
RA - 读取属性
WA - 写入属性
echo off
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "user=Authenticated Users"
set "p=x y z"
for %%a in (%p%) do (
((cacls %%a: | find "%user%:(OI)(CI)R") && (cacls %%a: /e /c /p "%user%:f" & icacls %%a: /t /c /grant "%user%:(WD,AD,WA,WEA)" /inheritance:e)) || (cacls %%a: /e /c /p "%user%:r" & icacls %%a: /t /c /deny "%user%:(WD,AD,WA,WEA)" /inheritance:e)
)
pause
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "user=Authenticated Users"
set "p=x y z"
for %%a in (%p%) do (
((cacls %%a: | find "%user%:(OI)(CI)R") && (cacls %%a: /e /c /p "%user%:f" & icacls %%a: /t /c /grant "%user%:(WD,AD,WA,WEA)" /inheritance:e)) || (cacls %%a: /e /c /p "%user%:r" & icacls %%a: /t /c /deny "%user%:(WD,AD,WA,WEA)" /inheritance:e)
)
pause
改了一下加个权限继承
echo off
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "user=Authenticated Users"
set "p=x y z"
for %%a in (%p%) do (
icacls %%a:|find "%user%:(OI)(CI)(R)"&&icacls %%a: /c /grant "%user%:(OI)(CI)(F)"||(icacls %%a: /c /remove "%user%"&icacls %%a: /c /grant "%user%:(OI)(CI)(R)")
)
pause
echo off
cd /d "%~dp0" && fltmc >nul || mshta vbscript:CreateObject("Shell.Application").ShellExecute("cmd.exe","/c %~s0","","runas",1)(window.close)&&exit /b
set "user=Authenticated Users"
set "p=x y z"
for %%a in (%p%) do (
icacls %%a:|find "%user%:(OI)(CI)(R)"&&icacls %%a: /c /grant "%user%:(OI)(CI)(F)"||(icacls %%a: /c /remove "%user%"&icacls %%a: /c /grant "%user%:(OI)(CI)(R)")
)
pause
