|
Home > Archive > IIS Server Security > April 2005 > Looking for suggestions on how to clean up ACL - W2k+IIS
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Looking for suggestions on how to clean up ACL - W2k+IIS
|
|
| M. Simioni 2005-04-14, 5:59 pm |
| Hi, i'm new to Windows 2000 server administration.
I just got a Windows 2000 server machine that acts as a webserver.
I saw that the ACL is very dirty: the ASPNET, FTP and IUSR_ accounts have
full control in too much directory.
Well, i was looking for a good tutorial on how to clean the acl and give
only the file/directory permissions that are strictly needed by IIS and
ASPNET.
The server has Windows 2000 Server SP4, MS SQL Server 2000 and IIS 5.0 with
ASP.NET sites installed on it.
I was wandering if deleting all the account accesses to directories, and
leaving only Administrator access + those accesses needed by IIS&ASPNET is a
good idea.
No one uses that computer, it's only a webserver with few sites on it but i
would like to harden it.
Thanks a lot i.a.
best regards
Marco
| |
|
|
|
|
|