Re: Strange password behavior with Linux

From: BB (Bernard_at_3exp.com)
Date: 03/27/03


From: "BB" <Bernard_at_3exp.com>
Date: Thu, 27 Mar 2003 10:34:23 +0800


> Do you know if it is possible to upgrade to IIS 6.0 without upgrading the
> whole server to .NET (Windows 2003)?

Nope.

-- 
Regards,
Bernard Cheah
http://support.microsoft.com/
"Martin R?bo" <martin@teknologia.com> wrote in message
news:b5s7lc$ik5$1@green.tninet.se...
> David, you pointed me exactly in the right direction. Thanks for that.
>
> You also got a point that the UNC-method in IIS5 is not really ready for
use
> professionally.
>
> Do you know if it is possible to upgrade to IIS 6.0 without upgrading the
> whole server to .NET (Windows 2003)?
>
> Martin
>
>
>
> *********************************************************************
>  Martin R?bo       Tel:  +46-31-54 54 80  martin@teknologia.com
>  V?erskiftesg. 12  Fax:  +46-31-64 32 64  http://www.teknologia.com
>  418 31  G?EBORG   Mob: +46-708-77 01 03  ICQ: 6433239
> *********************************************************************
> "David Wang [Msft]" <someone@online.microsoft.com> skrev i meddelandet
> news:O5Rzz#d5CHA.1740@TK2MSFTNGP12.phx.gbl...
> > Sounds like you are talking about having a vdir whose physical directory
> is
> > a UNC share, and you want pass-thru authentication.
> >
> > If you configure the UNC Username/password for a vdir, then requests to
> the
> > UNC share via the vdir will all be made by this configured user.  If you
> do
> > not, there are some other steps to be done to allow "pass-thru"
> > authentication, where the authenticate user is used to access the UNC
> share.
> >
> > The latter sounds like the behavior that you want.  Due to an UI bug, if
> you
> > ever set the UNC Username/password, even after you uncheck it to "allow
> > pass-thru authentication", it still won't work.  The way around this bug
> is
> > to either never set the UNC username/password option, recreate the vdir,
> or
> > use ADSUTIL/some-other-metabase-editor to delete the UNCUsername and
> > UNCPassword properties of the affected vdir.
> >
> > There's a bunch of KB articles on the subject of IIS and UNC ( Q214806
is
> > the primary one).  This issue does not have a clean solution with IIS5
> (i.e.
> > it is not supported, scalable, performant).  With IIS6, the UNC scenario
> > works very well (performance, scalability, and supported).
> >
> > --
> > //David
> > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> > //
> > "Martin R?bo" <martin@teknologia.com> wrote in message
> > news:b4c9g1$1vv$1@green.tninet.se...
> > We encounter a strange behavior with password sent fr? IIS to our File
> > server. I hope someone could give me a clue about this:
> >
> > Files on a file server  A normal connection from the windows server,
(for
> > example mapping a drive letter in Explorer) works fine with the
> appropriate
> > user/pass.
> >
> > The webserver runs IIS 5.0 with all latest servicepack and stuff.
> > When setting up a website we point the home directory to the share on
the
> > fileserver together with appropriate user/pass. Second configuration is
to
> > allow Anonymous access and entering a user/pass for this.
> >
> > The user/pass sent to the fileserver when an anonumous user is accessing
> the
> > wwebsite is never the one entered as the anonymous account, instead the
> > user/pass entered for the file share is used all the time.
> > This is not a problem as far as we use Anonymous access since we can
enter
> > the same user/pass for both Anonymous access and for the home
directory's
> > access to the file server.
> >
> > But, when we disable Anonymous access and the user accessing the website
> > enters a user/pass, this is never sent to the file server for
> > authentification. It is as I said before, only the user/pass entered for
> the
> > home directory is sent to the file server.
> > This way the user/pass entered by the user accessing the website has no
> > effect. Well, it has the effect that the user must enter a username
which
> > exist on the webserver  but that means that a user on the server easily
> can
> > access all other sites and that is of course not the id?.
> >
> > Our fileserver is a Linux (debian) with a samba share but the problem is
> > equal when using a local fileserver with Windows on the same LAN which
is
> a
> > member of the same domain.
> > It seem that IIS change the way it handles password when home directory
is
> > not local.
> >
> > Anyone?
> >
> > Sincerely
> > Martin R?bo
> > Teknologia
> >
> >
> >
>
>