Re: IIS Security
- From: Nips <sops.sf.lists@xxxxxxxxx>
- Date: Tue, 07 Nov 2006 14:29:14 -0700
I second Thor's request. I, too, would like to know the product..
Matt Wagenknecht
Security Consultant
Special Ops Security
www.specialopssecurity.com
On Tue, 2006-10-31 at 17:30 -0700, Thor (Hammer of God) wrote:
Please publish the name of the company and the name of the product.
Thanks.
t
On 10/27/06 7:53 AM, "alex2@xxxxxxxxxxxxxx" <alex2@xxxxxxxxxxxxxx> spoketh
to all:
We've a vertical package that includes a web based portal. (quite common for
many Enterprise packages)
The problem lies in some of the requirements that the company puts on running
this portal.
The major one is that of adding the IUSR_machinename account to the local
admin group.
I know this is horrible, but need specific reasons why this shouldn't be done
so that I can bring it to my boss and get it fixed.
Thanks
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- References:
- Re: IIS Security
- From: Thor (Hammer of God)
- Re: IIS Security
- Prev by Date: RE: IIS Security
- Next by Date: SecurityFocus Microsoft Newsletter #316
- Previous by thread: Re: IIS Security
- Next by thread: RE: IIS Security
- Index(es):
