Re: Recommended security in hosting environment

From: Dmitry Burtsev (burtsev_at_km.ru)
Date: 04/07/04 

Date: Wed, 7 Apr 2004 11:01:42 +0400

Hello!
I am use name based virtual hosting. On my servers I do such things.
For new hosting user I create two accounts. One for user access by ftp,
second for IIS anonymous access.
Users upload their content by ftp. On their home directory set full control
for user account. Web site point on directory "www", on it set RX
permissions for IIS anonymous account.
DB folders - .mdb files (Access database) users put in subdirectory under
"www". In IIS console I uncheck all boxes on Properties -> Directory for
this directory.
Log folder - My users didn't need access their log files. I keep it on
another partitions (another disk will be best for perfomance). But you cant
create folder for it under home directory.

Simple scheme:

/
|-Log folder
|-WWW
     |-DB
     |-Content

For security in IIS console on web site properties go to "Home Directory"
and uncheck all boxes except "Read" and "Log visits" (if you need it)
Sorry for my English.

Dmitry Burtsev (burtsev@km.ru)

"cobba" <cobba.14bv5m@mail.webservertalk.com> wrote in message
news:cobba.14bv5m@mail.webservertalk.com...
>
> Hi
>
> I was just wondering if anyone had any recommendations on the security
> for a hosting environment? eg if you had a databases folder, log
> folder, www folder, what sort of permissions would you put in there?
>
> Also, how would you configure IIS whether the sites were IP based
> hosting, or name based hosting?
>
> Any suggestions are much appreciated!
>
>
>
> --
> cobba
> ------------------------------------------------------------------------
> Posted via http://www.webservertalk.com
> ------------------------------------------------------------------------
> View this thread: http://www.webservertalk.com/message174428.html
>

Relevant Pages

  • Re: FTP login problem
    ... What IIS version you are running? ... > His site is testme.com and the home directory is set to the same as ... > testme has full control on that folder. ... > 530 User testme cannot log in, ...
    (microsoft.public.inetserver.iis.ftp)
  • web sharing folder
    ... I am having a minor problem trying to share a users home directory on IIS ... the permission on the virtual directory for Read and Write access. ... these are set to full control for the use that is connecting to the folder. ...
    (microsoft.public.inetserver.iis)
  • 1st hosting of objects, new(), etc.
    ... will do a registerWellKnownServerType on a singleton that is also used ... The impetus is that I'd like a management console to be able to run w/o IIS ... managment consoles from local or remote machines with IIS already hosting ...
    (microsoft.public.dotnet.framework.remoting)
  • Re: IIS Anonymous Security Issue
    ... your provider's hosting and services model. ... IIS 6 is completely ... write privileges to the IIS Anonymous user on our server so we can solve ...
    (microsoft.public.inetserver.iis.security)
  • Re: Setting up Web Server for ASP.NET Web Service Project
    ... You need IIS... ... and some hosting providers do not support ASP.Net hosting ...
    (microsoft.public.cert.exam.mcad)
Quantcast