IIS Server Security - Securing IIS IUSER

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > October 2005 > Securing IIS IUSER





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Securing IIS IUSER
Pritchie

2005-10-24, 11:03 am

> "Pritchie" <info2005@remove-this-including-dot.bigbunker.com> wrote in
> message news:dpO4f.3413$sm1.224@newsfe5-win.ntli.net...
"Users"[vbcol=seagreen]
to[vbcol=seagreen]
>
>
> "Miha Pihler [MVP]" <mihap-news@atlantis.si> wrote in message
news:<uN#nh600FHA.3000@TK2MSFTNGP12.phx.gbl>...
> Hi,
>
> IUSER account is also "member of group" (it is "added" to the group
> dynamically) called "Authenticated Users" and that is the reason why it
> worked when the Users group had Read permission on the folder.
>
> You might also want to post this question in
> "microsoft.public.inetserver.iis.security"
>
> --
> Mike
> Microsoft MVP - Windows Security
>


Leon Mayne [MVP]

2005-10-24, 11:03 am

Pritchie wrote:[vbcol=seagreen]

Also remember that if the files you are accessing are ASP.NET application
files (.aspx) then they will execute in the context of the ASPNET account,
which is in the Users group.


Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com