web app service accounts
- From: ryan.mccutchen@xxxxxxxxx
- Date: 10 Dec 2006 22:34:46 -0800
I am looking for some feedback on an approach and if anybody has some
documentation to point me to that would be great....So here is the
scenario:
I have 2 .net apps on running on the same web server. Both apps have
databases on the same database server. (web and database are 2 separate
boxes)
Webapp1 has confidential data while Webbapp2 does not.
My question is should both of these apps run under the same app pool
with the same identity. My concern is that if the asp.net process on
Webapp2 was comprised then that same service account has read/write
access to the database of my confidential Webapp1.
I am a noobie, so any advice is greatly appreciated.
thanks
.
- Follow-Ups:
- Re: web app service accounts
- From: Dominick Baier
- Re: web app service accounts
- Prev by Date: Re: web app service accounts
- Next by Date: Re: path to aspnet_regiis
- Previous by thread: ASP.NET Login Control using appservicesDB for Membership, Roles and Users RUSH!!!
- Next by thread: Re: web app service accounts
- Index(es):
Relevant Pages
|
|
