? File level secutiry without setting ACL
From: David Rich (david.rich@cibasc.com)
Date: 05/20/02
- Next message: x y: "Re: ? File level secutiry without setting ACL"
- Previous message: Paul Lynch: "Re: IIS Security Logs .... WHat does this mean? am I vulnerable?"
- Next in thread: x y: "Re: ? File level secutiry without setting ACL"
- Reply: x y: "Re: ? File level secutiry without setting ACL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "David Rich" <david.rich@cibasc.com> Date: Mon, 20 May 2002 11:24:03 -0700
I have a lot of files like Word, Excel and PDF files on my
web site. I also have a database that has the user Domain
and user ID and what Files they can see.
>From that a ASP web page is building a page and only shows
that users the specific files they are suppose to see.
Currently I have to add the user id to the file's ACL to
restrict access to the file.
How can I handle this security without having to set the
ACL for each individual file.
I looked at ISAPI filters but I am not efficient enough in
C to write one. Is there another way to handle access
security to files on IIS?
I also tried to use the on session in the global.asa page
and have it timeout but it looked liked it would only run
if you hit a asp page.
If anyone knows how to handle this ACL issue please let me
know?
- Next message: x y: "Re: ? File level secutiry without setting ACL"
- Previous message: Paul Lynch: "Re: IIS Security Logs .... WHat does this mean? am I vulnerable?"
- Next in thread: x y: "Re: ? File level secutiry without setting ACL"
- Reply: x y: "Re: ? File level secutiry without setting ACL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
