User Guide

ERD Commander 2000

Winternals Software LP Page 22

6.1 ACCESS

Gives Everyone full access to directories or files.

Syntax ACCESS [[drive][path]filename] [/S]

Switches /S

Processes files in all subdirectories in the specified path

This command is a custom ERD Commander 2000 command. It is possible

to render a Windows NT/2000 system unbootable by inadvertently applying

security restrictions to NTFS files or directories that prevent NT/2000 from

loading files it requires. The ACCESS command will add a security entry to

the security attributes of specified files or directories which gives the

Everyone group full access. The Everyone group includes all groups and

accounts, so this is the most permissive security setting possible.

If the file or directory specified is inaccessible because the System account or

Administrators group is denied access, ERD Commander 2000 will first take

ownership for the Administrators group. This allows it to then modify the

security settings to give Everyone full access.

The command can even be applied to root directories of drives that have

been totally locked down. Such drives will show up in the drive mapping as

having a file system type of “???”. Simply specify the directory, e.g. “G:\”, as

the parameter to allow Everyone full access to the root directory. Files and

directories within the drive can then be unlocked through subsequent

applications of the ACCESS command.

NOTE: Because this command makes files and directories fully accessible to

any user, which opens potential security holes, you should lock-down files

and directories on which it is used after the system is booted normally.