IIS Server Security - Adding Administrator to NTFS permissions gives full control to WebDav

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > May 2006 > Adding Administrator to NTFS permissions gives full control to WebDav





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Adding Administrator to NTFS permissions gives full control to WebDav
Tim Guy

2006-05-19, 7:15 pm

I have an IIS 6.0 server which is running Webfolders/WebDav

If the administrator has full control to a Webfolder then ANY user that is
part of the domain can logon to that virtual folder where they dont have
NTFS permissions to it.

Other IIS servers on the same domain dont have this problem.

I have removed/reinstalled IIS and but it still occurs.

Does anyone have an suggestions. Im stumped.

Tim


Jeff Cochran

2006-05-20, 1:20 am

On Fri, 19 May 2006 21:54:21 +0100, "Tim Guy"
<tim@somewhere.nowhere.com> wrote:

>I have an IIS 6.0 server which is running Webfolders/WebDav
>
>If the administrator has full control to a Webfolder then ANY user that is
>part of the domain can logon to that virtual folder where they dont have
>NTFS permissions to it.
>
>Other IIS servers on the same domain dont have this problem.
>
>I have removed/reinstalled IIS and but it still occurs.
>
>Does anyone have an suggestions. Im stumped.

Most likely is a problem with the local admins group, but you'll need
to start looking at effective permissions on the folders.

Jeff
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com