IIS Security
- From: alex2@xxxxxxxxxxxxxx
- Date: 27 Oct 2006 14:53:42 -0000
We've a vertical package that includes a web based portal. (quite common for many Enterprise packages)
The problem lies in some of the requirements that the company puts on running this portal.
The major one is that of adding the IUSR_machinename account to the local admin group.
I know this is horrible, but need specific reasons why this shouldn't be done so that I can bring it to my boss and get it fixed.
Thanks
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Follow-Ups:
- RE: IIS Security
- From: Devin Ganger
- RE: IIS Security
- Prev by Date: RE: grant access to WINS only
- Next by Date: RE: IIS Security
- Previous by thread: SecurityFocus Microsoft Newsletter #314
- Next by thread: RE: IIS Security
- Index(es):
