Permissions
- Permissions refer to predefined capabilities granted to a subject to access or operate objects.
- Permissions are typically related to or associated with objects, e.g., NTFS permissions, Shared folder permissions, printer permissions, and Linux directory/file permissions (0x777), etc.
- Permissions can be divided into different levels. For example, The NTFS file system has standard permissions in different levels such as Full control, Modify, Read & execute, Read, Write, and Special permissions.
Rights
- Capabilities granted to a subject which are outside the scope of permissions.
- Rights typically are associated with actions, e.g., shut down a server, change the system time.
- Rights typically are YES/NO decisions. Microsoft group policy or local security policy is a good example to configure rights.
Privileges
- The union of permissions and rights.
NTFS Permissions
Group Policy/Local Security Policy
Pingback: Critical Security Areas That Software Engineers Have To Know To Secure Their Solutions - The web development company Lzo Media - Senior Backend Developer