公开(公告)号：WO2002095588A2

公开(公告)日：2002-11-28

申请号：PCT/US2001/051581

申请日：2001-11-30

Applicant: NETWORK APPLIANCE, INC.

Inventor： MUHLESTEIN, Mark

IPC: G06F11/30

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: The invention provides a method and system for performing specialized services for files at a server, such as scanning files for viruses. A filer or other server is connected to one or more supplementary computing devices that scan requested files to ensure they are virus free prior to delivery to end users. When an end user requests a file the following steps occur: The server determines whether the file requested must be scanned before delivery to the end user. The server opens a channel to one of the external computing devices and sends the filename. The external computing device opens the file and scans it. The external computing device notifies the filer the results of the file scan operation. The server sends the file to the end user provided the status indicates it may do so.

Abstract translation: 本发明提供了一种方法和系统，用于对服务器（130）上的文件（133）执行专门的服务，例如扫描病毒文件。 文件管理器（130）或其他服务器（130）连接到扫描所请求的文件（133）的一个或多个辅助计算设备（141），以确保在递送给最终用户之前它们是无病毒的。 当最终用户请求文件（133）时，发生以下步骤：服务器（130）确定在发送给最终用户（111）之前是否必须扫描被请求的文件（133）。 服务器（130）向外部计算设备（141）中的一个打开通道（135）并发送文件名。 外部计算设备（141）打开文件并对其进行扫描。 外部计算装置（141）向文件管理器（130）通知文件扫描操作的结果。 服务器（130）将文件发送给最终用户（111），只要状态指示可以这样做。

公开(公告)号：EP1058873A1

公开(公告)日：2000-12-13

申请号：EP99909745.4

申请日：1999-03-02

Applicant: Network Appliance, Inc.

Inventor： HITZ, David ,  BORR, Andrea ,  HAWLEY, Robert, J. ,  MUHLESTEIN, Mark ,  PEARSON, Joan

IPC: G06F1/00

CPC classification number: G06F21/6218 ,  G06F21/41 ,  G06F21/6236 ,  G06F2221/2141

Abstract: The invention provides a method and system for enforcing file access control among client devices using multiple diverse access control models and multiple diverse file server protocols. A multi-protocol file server identifies each file with one particular access control model out of a plurality of possible models, and enforces that one particular model for all accesses to that file. When the file server receives a file server request for that file using a different access control model, the file server translates the access control limits for that file into no-less-restrictive limits in the different model. The file server restricts access by the client device using the translated access control limits. Each file is assigned the access control model of the user who created the file or who last set access control limits for the file. When a user having a different access control model sets access control limits, the access control model for the file is changed to the new model. Files are organized in a tree hierarchy, in which each tree is limited to one or more access control models (which can limit the ability of users to set access control limits for files in that tree). Each tree can be limited to NT-model-only format, Unix-model-only format, or mixed NT-or-Unix-models format.

公开(公告)号：EP1348162A2

公开(公告)日：2003-10-01

申请号：EP01273994.2

申请日：2001-11-30

Applicant: Network Appliance, Inc.

Inventor： MUHLESTEIN, Mark

IPC: G06F11/30

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: The invention provides a method and system for performing specialized services for files (133) at a server (130), such as scanning files for viruses. A filer (130) or other server (130) is connected to one or more supplementary computing devices (141) that scan requested files (133) to ensure they are virus free prior to delivery to end users. When an end user requests a file (133) the following steps occur: The server (130) determines whether the file (133) requested must be scanned before delivery to the end user (111). The server (130) opens a channel (135) to one of the external computing devices (141) and sends the filename. The external computing device (141) opens the file and scans it. The external computing device (141) notifies the filer (130) the results of the file scan operation. The server (130) sends the file to the end user (111) provided the status indicates it may do so.

公开(公告)号：EP1058873B1

公开(公告)日：2006-02-08

申请号：EP99909745.4

申请日：1999-03-02

Applicant: Network Appliance, Inc.

Inventor： HITZ, David ,  BORR, Andrea ,  HAWLEY, Robert, J. ,  MUHLESTEIN, Mark ,  PEARSON, Joan

IPC: G06F1/00

CPC classification number: G06F21/6218 ,  G06F21/41 ,  G06F21/6236 ,  G06F2221/2141

Abstract: The invention provides a method and system for enforcing file access control among client devices using multiple diverse access control models and multiple diverse file server protocols. A multi-protocol file server identifies each file with one particular access control model out of a plurality of possible models, and enforces that one particular model for all accesses to that file. When the file server receives a file server request for that file using a different access control model, the file server translates the access control limits for that file into no-less-restrictive limits in the different model. The file server restricts access by the client device using the translated access control limits. Each file is assigned the access control model of the user who created the file or who last set access control limits for the file. When a user having a different access control model sets access control limits, the access control model for the file is changed to the new model. Files are organized in a tree hierarchy, in which each tree is limited to one or more access control models (which can limit the ability of users to set access control limits for files in that tree). Each tree can be limited to NT-model-only format, Unix-model-only format, or mixed NT-or-Unix-models format.

公开(公告)号：EP1348159A2

公开(公告)日：2003-10-01

申请号：EP01987296.9

申请日：2001-11-30

Applicant: Network Appliance, Inc.

Inventor： MUHLESTEIN, Mark

IPC: G06F7/00 ,  G06F11/34

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: The invention provides a method and system for scanning specialized computing devices for viruses. In a preferred embodiment, a filer (130) is connected to one or more supplementary computing devices (140) that scan requested files to ensure they are virus free prior to delivery to end users. When an end user (111) requests a file the following steps occur: First, the filer determines whether the file requested must be scanned before delivery to the end user. Second, the filer opens a channel to one (141) of the external computing devices and sends (203) the filename. Third, the external computing device opens (205) the file and scans (207) it. Fourth, the external computing device notifies the filer the results of the file scan operation. Fifth, the filer sends (211) the file to the end user provided the status indicates it may do so.