Re: Win2k3 Event Log and Security: Must choose between security and trustworthy

From: Jonathan Folland (jfolland.nospam@earthlink.net)
Date: 04/23/03 

From: "Jonathan Folland" <jfolland.nospam@earthlink.net>
Date: Wed, 23 Apr 2003 11:54:54 -0500

Thanks Roger,

I had actually added the ASP.Net and Iuser accounts to that reg key. That
had no impact. I will try with the NETWORK SERVICE.

That sounds like a better solution that running the Default Application pool
under the System user account.

Jonathan

"Roger Down" <roger.down@c2i.net> wrote in message
news:eUicSsZCDHA.3064@TK2MSFTNGP11.phx.gbl...
> Thanks Jonathan for taking the time to write about this important issue...
>
> I have seen many solutions for this problem, and I consider most of them
> hacks... just to get some sort of access to the eventlog. There should be
an
> easier way to have some simple write access to the default eventlog...
> perhaps from web.config or something. I am not a security expert, but how
> dangerous could that be ??
>
> Today I use this "hack" on Windows 2003...:
>
> 1. Open RegEdit
> 2. Goto HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\
> 3. From the menu, choose Edit->Permissions
> 4. Click the Add button and write NETWORK SERVICE.
> 5. For the NETWORK SERVICE account, set the "appropriate" eventlog
> permissions.
>
> There must be a better/safer/easier solution than this, to achieve some
> simple write access to the eventlog ?
>
> Microsoft document "Building Secure ASP.NET Applications: Authentication,
> Authorization, and Secure Communication" located at
> http://msdn.microsoft.com/library/en-us/dnnetsec/html/SecNetch08.asp have
> some lines about "Accessing System Resources".
>
>
> Best of regards...
>
>