Can I restrict access to the file only to one user?

sruj

New member
Local time
6:40 AM
Messages
3
Can I restrict access to the file only to one user (with administrator permission)? Even if another user has administrator permission.

ps it is about system file Windows\System32\drivers\etc\hosts if this is important.
 

My Computer My Computer

At a glance

windows7 professional x64Q95506GB DDR2GF9600GT
Computer type
PC/Desktop
OS
windows7 professional x64
CPU
Q9550
Motherboard
GA-EP35-DS3R
Memory
6GB DDR2
Graphics Card(s)
GF9600GT
Monitor(s) Displays
22
Hard Drives
ssd,hdd
PSU
atx-fortron-fsp350
Of course. But anyone part of the Administrators group can just take ownership and alter the permissions. Thus you shouldn't give people administrative power unless its absolutely necessary.
 

My Computer My Computer

At a glance

Windows 10 Pro (x64)Intel Core i7-3930K (3.2GHz - 4.5GHz)4x Samsung 4GB PC3-12800 DDR3 (16GB 1600MHz)Nvidia Geforce GTX 690
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Alienware Aurora ALX R4
OS
Windows 10 Pro (x64)
CPU
Intel Core i7-3930K (3.2GHz - 4.5GHz)
Motherboard
Alienware Aurora-R4 x79
Memory
4x Samsung 4GB PC3-12800 DDR3 (16GB 1600MHz)
Graphics Card(s)
Nvidia Geforce GTX 690
Sound Card
SteelSeries Siberia Elite
Monitor(s) Displays
Dell UltraSharp U3011
Screen Resolution
2560x1600
Hard Drives
Samsung 850 Pro 256 GB, Seagate 1TB Desktop Hybrid HDD, 2x Western Digital 4TB Green HDD
PSU
875W Some Dell PSU <.<
Case
Alienware Aurora ALX
Cooling
Custom Liquid Cooling (EK CPU & GPU blocks) dual EK 480RAD
Keyboard
Logitech G710+ Mechanical
Mouse
Logitech G700s
Internet Speed
Verizon Fios (50 mbps average)
Other Info
Server: Intel NUC D54250WYK: i5-4250U, 16GB, 256 GB mSATA, Windows Server 2012 R2
The hosts file is a critical one, I don't think you should restrict access to it, not at least without consequences, as it controls part of the name resolution system. It's by default read-only for every user and read-write for admins only, which should suffice to warrant security.
Why would you want to prevent access to it? It doesn't contains any kind of sensitive information.

Also, you can't prevent administrators from having complete control of the system, that's the purpose of those kind of accounts. Denying permissions on them will stop them, but they can always give access back to themselves, making it a useless "protection".
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64Intel Core i7-740QM8 GB DDR3NVIDIA GeForce 330GT
Computer type
Laptop
Computer Manufacturer/Model Number
Toshiba Sattelite A665-S6092
OS
Windows 7 Ultimate x64
CPU
Intel Core i7-740QM
Memory
8 GB DDR3
Graphics Card(s)
NVIDIA GeForce 330GT
Screen Resolution
1366x768
Hard Drives
Samsung 840 SSD 500GB
1TB USB3 external HD
Cooling
Coolermaster Notepal U3 notebook cooling pad
Internet Speed
3mbps ASDL
Antivirus
ClamWin 0.98.7
Browser
Opera 12.17 x86 (main), Firefox 38 (sec), IE11 (last resort)
Any attempt to restrict what an admin account can do is an exercise in futility. All admin accounts are equal. The one you are using is in no way superior to any other. The built in Administrator account is a little different but not relevant to this situation. Any restrictions you might put in place can be undone by any other admin account. This is by design.

You shouldn't be changing permissions on system files unless you really understand what you are doing. This is a lot more complicated that it appears.
 

My Computer My Computer

At a glance

Windows 7 Pro 64 bitXeon W35208 GBNvidia Geforce 210
Computer type
PC/Desktop
Computer Manufacturer/Model Number
HP
OS
Windows 7 Pro 64 bit
CPU
Xeon W3520
Memory
8 GB
Graphics Card(s)
Nvidia Geforce 210
Back
Top