Access based file system directory enumeration
First Claim
1. A computer implemented method for providing a filtered file system directory listing on a host computer, the method comprising:
- receiving, from a process associated with a user, a file system directory listing request for a directory stored within an NTFS type file system, wherein the user has a defined set of data object access permissions;
receiving a file system directory listing for the directory, wherein the file system directory listing includes a corresponding entry for each data object within at least one data object;
removing at least one entry within the file system directory listing by filtering out the at least one entry within the file system directory listing in response to the defined set of data object access permissions for the user prohibiting access to a corresponding data object that corresponds to the at least one entry within the file system directory listing, thereby creating a filtered file system directory; and
forwarding the filtered file system directory listing to the process, the filtered file system directory listing consisting of the file system directory listing with the at least one entry removed therefrom.
3 Assignments
0 Petitions
Accused Products
Abstract
A filtered directory listing system includes a request interface that receives, from a process associated with a user that has a defined set of data object access permissions, a file system directory listing request for a directory stored within an NTFS type file system. The filtered directory listing system further includes a file system interface that receives a file system directory listing for the directory and a directory listing entry processor that determines at least one entry within the file system directory listing, where each of the at least one entry is for a data object to which the user is prohibited access. The filtered directory listing system also includes a filtered directory listing generator that generates a response that consists of the filtered file system directory listing for the directory, where the filtered file system directory listing consists of the file system directory listing with at least one entry removed therefrom.
-
Citations
20 Claims
-
1. A computer implemented method for providing a filtered file system directory listing on a host computer, the method comprising:
-
receiving, from a process associated with a user, a file system directory listing request for a directory stored within an NTFS type file system, wherein the user has a defined set of data object access permissions;
receiving a file system directory listing for the directory, wherein the file system directory listing includes a corresponding entry for each data object within at least one data object;
removing at least one entry within the file system directory listing by filtering out the at least one entry within the file system directory listing in response to the defined set of data object access permissions for the user prohibiting access to a corresponding data object that corresponds to the at least one entry within the file system directory listing, thereby creating a filtered file system directory; and
forwarding the filtered file system directory listing to the process, the filtered file system directory listing consisting of the file system directory listing with the at least one entry removed therefrom. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A filtered directory listing system, comprising:
-
a request interface that receives, from a process associated with a user, a file system directory listing request for a directory stored within an NTFS type file system, wherein the user has a defined set of data object access permissions;
a file system interface that receives a file system directory listing for the directory;
a directory listing entry processor that removes at least one entry within the file system directory listing by filtering out the at least one entry within the file system directory listing in response to the defined set of data object access permissions for the user prohibiting access to a corresponding data object that corresponds to the at least one entry within the file system directory listing, thereby creating a filtered file system directory; and
a filtered directory listing generator that forwards a filtered file system directory listing to the process, the filtered file system directory listing consisting of the file system directory listing with the at least one entry removed therefrom. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer readable medium including a program which, when executed by a processor, performs operations for providing a filtered file system directory listing, the operations comprising:
-
receiving, from a process associated with a user, a file system directory listing request for a directory stored within an NTFS type file system, wherein the user has a defined set of data object access permissions;
receiving a file system directory listing for the directory, wherein the file system directory listing includes a corresponding entry for each data object within at least one data object;
removing at least one entry within the file system directory listing by filtering out the at least one entry within the file system directory listing in response to the defined set of data object access permissions for the user prohibiting access to the at least one entry within the file system directory listing, thereby creating a filtered file system directory; and
forwarding the filtered file system directory listing to the process, the filtered file system directory listing consisting of the file system directory listing with the at least one entry removed therefrom. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification