Re: securirty differences Win 2K and Win XP

From: Bryan Donaldson (bryandonaldson@mindspring.com.filter)
Date: 12/13/02 

From: "Bryan Donaldson" <bryandonaldson@mindspring.com.filter>
Date: Fri, 13 Dec 2002 11:40:19 -0500

well - the basic security log didn't show what user was used to access the
page or the XML file. I can't seem to find where I might turn THAT on.
I've got all the other audits enabled in the Local Security Settings / Audit
Policies to record Success and Failure.

The IIS log says that the user used to access the page is my currently
logged in user, but does not record what user is used to access the XML or
the XSLT file.

"Larry Hastings" <greg.NOSPAM.@NOSPAM.unixsucks.com> wrote in message
news:uvi17l5pdrlodc@corp.supernews.com...
> You'd have to enable security log on your IIS machine and actually check
what account is being used
> when XP user requests page, you'd see logon event in security tab, then
you can compare results with
> Windows 2000.
>
> --
>
> G
>
> "Bryan Donaldson" <bryandonaldson@mindspring.com.filter> wrote in message
> news:#hbQTTioCHA.1628@TK2MSFTNGP12...
> | both workstations are in the same domain, and both users are logged in
with
> | accounts in the same domain with similar (if not the same) privileges.
> |
> | When the ASPX file executes to run the Transformation for the treeview -
the
> | error I get is "there is invalid data in the root level. Line 1 position
1".
> | This is the usual message I get when the source file does not exist, or
the
> | transformation fails or for some other reason the generated XML from the
> | XSLT does not produce the proper <TREENODES>.
> |
> | All I have to do to get the application to run is re-enable Anonymous
> | Access- and then it can find the file and generate the proper XML via
the
> | transformation.
> |
> | "Larry Hastings" <greg.NOSPAM.@NOSPAM.unixsucks.com> wrote in message
> | news:uvhstvplmn8o80@corp.supernews.com...
> | > Are both workstations are part of the same domain? People who are
logged
> | on workstations using their
> | > domain accounts?
> | > What do you get in a browser on WindowsXP system, what kind of error
> | message?
> | >
> | > --
> | >
> | > G
> | >
> | > "Bryan Donaldson" <bryandonaldson@mindspring.com.filter> wrote in
message
> | > news:e8N3szhoCHA.2384@TK2MSFTNGP09...
> | > | I have an issue while developing an ASP.NET project. We have
developers
> | > | using Win 2k Workstations and developers using Wind XP workstations.
> | > |
> | > | Both type have done the VS.Net installation. We have a project in
> | > | development that requires identifying the user by his Logon name for
> | > | authorization purposes, and (for different purposes) reading and
writing
> | an
> | > | XML file.
> | > |
> | > | We disabled Anonymous access and set the application use Integrated
> | Windows
> | > | Authentication in the Directory Security Tab on both systems.
> | > | For both systems, we modified the properties of the directory
containing
> | the
> | > | XML file to allow read and write access to the ASPNET user for the
local
> | > | machine.
> | > |
> | > | The reading of the XML file happens in an XSLT transformation of the
XML
> | > | file into a TreeView WebControl.
> | > |
> | > | The application can read and write the XML file on the Win 2k
systems.
> | > |
> | > | However, when this operation is attempted on the Win XP system ->
the
> | > | application cannot even READ the XML file <-. (Simply changing the
> | > | application's Directory Security setting back to allow Anonymous
Access
> | > | allows the application access to the file to Read anyway).
> | > |
> | > | (Note - attempts to give the local ASPNET user the same privileges
as
> | the
> | > | IUSR_... account were not successful in resolving this issue)
> | > |
> | > | Any ideas?
> | > |
> | > | --
> | > | Bryan Donaldson
> | > | Experience is something you don't get until just after you need
it...
> | > |
> | > |
> | >
> | >
> |
> |
>
>

Relevant Pages

  • Re: securirty differences Win 2K and Win XP
    ... with anonymous access enabled: ... > So IIS log does not show username when access is for XML or XSLT file? ... > | well - the basic security log didn't show what user was used to access ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: securirty differences Win 2K and Win XP
    ... So IIS log does not show username when access is for XML or XSLT file? ... | well - the basic security log didn't show what user was used to access the ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Component/Tools to create XSL/XML
    ... > when viewing the XML file in a web browser. ... I understand that XSL ... During their work they understood that the transformation part could be ... XML-documents don't transform them into XSL-FO, ...
    (borland.public.delphi.thirdpartytools.general)
  • Re: PHP 5, XSL transformations of big files
    ... process my big XML file. ... echo 'Failed to save XSLT transformation result to the file ... server, instead of download this large file, he'll upload it.. ...
    (comp.lang.php)
  • Re: HttpRequest Question
    ... That is if the server receives a request without a user agent string it could then perform the transformation server side to support non XML/XSL browsers. ... If use the code I posted in my original post and I save the response stream to a file it isn't the XML but rather the transformed HTML. ...
    (microsoft.public.dotnet.framework.aspnet)