windows service account query
-
Hi all, I have developed a windows service which runs executable files received from some remote machine. Now i dont want to give my service all the rights so i decided to run the service in "NT AUTHORITY\\LocalService" Account... but when i do that i am unable to create any files or destroy any files in the system Now i want mmy service to have capability of creating new files but it shud not be able to destroy any pre-exisiting files....also if possible i want to restrict this file creation to only one particulat folder....meaning for e.g if i have a folder called p2p then any excutable ran frm my service shud be able to create files in that folder only and not in any other folder like program files etc. How do i achieve the above thing thanks kunal