On Mon, 2008-02-11 at 08:47 -0600, Shirish Pargaonkar wrote: > And I should be calling [it] DEFSECDESCLEN instead of MINDACLLEN > as it is (default) security descriptor length, not just (minimum) DACL length. That would be less confusing. Shaggy -- David Kleikamp IBM Linux Technology Center