Re: ASP IIS components with IWAM

From: Karl Levinson [x y] mvp (levinson_k@excite.com)
Date: 02/05/03

• Next message: Guig: "Re: Strange security problem"
• Previous message: Karl Levinson [x y] mvp: "Re: Correct NTFS Permissions for a Hardened Web Server"
• In reply to: angelo: "ASP IIS components with IWAM"
• Next in thread: angelo angelo: "Re: ASP IIS components with IWAM"
• Reply: angelo angelo: "Re: ASP IIS components with IWAM"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Karl Levinson [x y] mvp" <levinson_k@excite.com>
Date: Wed, 5 Feb 2003 14:05:11 -0500

IUSR is used if the "application isolation" setting on the script or folder
containing the script is set to "low" in the IIS MMC. Medium or high uses
IWAM.

http://securityadmin.info/faq.htm#iwam

Enabling auditing can help you see who is using what... useful in improving
security as well as troubleshooting permissions:

http://securityadmin.info/faq.htm#auditing

"angelo" <drinkwater@videotron.ca> wrote in message
news:0b4101c2ccb7$3739ede0$8af82ecf@TK2MSFTNGXA03...
> I have an ASP app running on xp iis 5.1 which calls a dll
> written in vb 6.0. The app runs in high isolation with
> anonymous access. According to the docs, since my app is
> in high isolation with anonymous access, the account used
> by IIS is IWAM_machinename. Now, my app has several
> folders for the various files needed (/htm, /images ...)
> One of these folders is a /temp folder where my dll
> creates temporary files. I have installed this app at all
> of my clients without any problems. All, but one that is.
> This client was getting permission errors when my dll was
> creating files in the /temp folder. I gave the folder the
> IWAM_machinename security but that didn't work. So I gave
> the IUSR_machinemame and that worked. Why ? It should be
> using the IWAM_machinename. And besides that, why does it
> work sometimes without IWAM or IUSR - don't all
> permissions come from IWAM ? Please help - thanks in
> advance.

---

• Next message: Guig: "Re: Strange security problem"
• Previous message: Karl Levinson [x y] mvp: "Re: Correct NTFS Permissions for a Hardened Web Server"
• In reply to: angelo: "ASP IIS components with IWAM"
• Next in thread: angelo angelo: "Re: ASP IIS components with IWAM"
• Reply: angelo angelo: "Re: ASP IIS components with IWAM"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: ASP.Net 1.1 and 2.0 Coexist? ... I ran IIS 6 in IIS 5 isolation mode and, you're right, changing the isolation ... > You will automatically get one aspnet_wp process for the 1.x app and one for the 2.0 ... > ASP application either run in inetinfo, a shared dllhost process ... (microsoft.public.dotnet.framework.aspnet) Re: CGI apps break after DCPROMO an IIS6 server ... >well with IIS without a lot of reconfiguration. ... >I have a calendar app that worked fine on a member IIS6 ... >There is an app extension for the app, folder security has ... (microsoft.public.inetserver.iis.security) Re: Opening a Web Project ... Go into IIS and create a new virtual directory with the same name as the ... point it to your project folder. ... the same name as original web app name. ... (microsoft.public.dotnet.languages.vb) Re: Temporary ASP.Net files Access Denied ... account has permission to create folders under the temp. ... account, which gives permission to create the folder once, but normal users ... Not able to figure out what the problem was, I deleted the app ... IIS between each step. ... (microsoft.public.dotnet.framework.aspnet) Re: ASP_NET process ... isolation you set your app to that sends the requests to be processed by ... > From what I understdand aspnet_wp process is managed differently by IIS. ... > You cannot run multiple processes on the same machine (the app isolation ... (microsoft.public.dotnet.framework)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)