Re: Out of Process execution and .NET
From: Rory Plaire (_no_spam_no_rplaire_at_peak.org)
Date: Tue, 04 Nov 2003 15:28:04 -0800
"Michael Pearson" <email@example.com> expressed
> What I did was create a Domain account that ASP.net runs as, and gave
> that user access to the shares it needed to write to.
For the benefit of the readership, please let me state that this will work,
but generally leaves a security weakness. A better way might be to do such
work in a COM+ application, which is impersonated in the same way, but the
privileges are isolated from the anonymous account running web pages by
only those methods which are exposed from the COM+ app.