DACL - Discretionary Access Control List

DACL - Discretionary Access Control List

DACL identifies the trustees that are allowed or denied access to a secured object. If you are setting the discretionary access control list (DACL) or system access control list (SACL) of an object, the system automatically propagates any inheritable access control entries (ACEs) to existing child objects, according to the ACE inheritance rules.

Changed the API from "SetSecurityInfo" to "SetNamedSecurityInfo" - the former would not set security on a remote computer (it produced a "handle is invalid" error). Thanks to the user who discovered this bug and notified me.