Re: Windows 2003 (IIS6) security question
From: David Wang [Msft] (someone_at_online.microsoft.com)
Date: 12/13/03
- Next message: Pete Hornby: "Re: Microsoft FTP Server problem on W2K?"
- Previous message: Wade A. Hilmo [MS]: "Re: ISAPI Authentication"
- In reply to: ML.net: "Windows 2003 (IIS6) security question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 12 Dec 2003 20:23:24 -0800
IIS does cache user tokens (amongst many other things) for performance
reasons. You are not going to see a IUSR logon for every request.
Event logs entries like the ones you are concerned with are not going to DoS
your box since event logs usually recycles over itself. It's going to
possibly prevent you from carrying out repudiation, though.
-- //David IIS This posting is provided "AS IS" with no warranties, and confers no rights. // "ML.net" <mattlunzer@hotmail.com> wrote in message news:eeR2CdFwDHA.1996@TK2MSFTNGP12.phx.gbl... If you enable (success) auditing for "Audit Logon Events" or "Audit Account Logon Events" will it log I_User account logon's? Obviously, my concern would be for a high traffic web server getting an essentail DOS attack against itself due to a high volume amount of logging in the security logs. The descriptions on MS site don't say specifically either way... TIA, ML
- Next message: Pete Hornby: "Re: Microsoft FTP Server problem on W2K?"
- Previous message: Wade A. Hilmo [MS]: "Re: ISAPI Authentication"
- In reply to: ML.net: "Windows 2003 (IIS6) security question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
