Mark's web presence nothing very exciting, just some guy's web presence

[This is a duplicate of http://drupal.org/node/215646]

In order to make search_attachments respect access permissions better, I need to know what modules and/or access control configurations people are using to restrict access to nodes that files might be attached to.

Currently, search_attachments respects the access control strings defined in each file management modules' hook_perm() permission strings, and also filters all node nids returned in a search through a list of node nids that the current user is allowed to view as defined by the query db_query(db_rewrite_sql("SELECT nid FROM {node}")). However, several users have reported problems with this approach.

I would appreciate search_attachments users who are implementing any access control modules to test whether things are working as expected for files retrieved in searches. Specifically, in the current version (5.x-3) of the module, users who are allowed to view a node are also allowed to view any files attached to the node, and each user's search results should only contain files that he is allowed to view.

A similar question that will assist me while developing the next version, which allows users to search files that are not attached to nodes, is what modules/configurations people are using to restrict access to files uploaded via webfm and other modules that do not require attaching files to nodes, or access to files that are FTPed to their Drupal sites (I would appreciate hearing about the latter in particular).

Please leave a comment describing how you're restricting access to nodes and/or files. Thank you.