Re: Ideas on deferring authentication?
rgutter_at_bctf.ca
Date: 06/24/05
- Next message: Jeff Cochran: "Re: Classic ASP Page not running under IIS6.0"
- Previous message: Paul J. Landry: "IIS/Windows Permissions/Rights"
- In reply to: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Next in thread: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Reply: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 23 Jun 2005 17:31:25 -0700
Putting confidential data on the inside serves two purposes: one, since
a host on the DMZ is more likely to be compromised than one on the
internal network, it better protects the documents themselves; two, it
means that the domain itself can be contained within the internal
network, protecting against attempts to retrieve domain-based
information.
But since I have to give some external users (with domain accounts)
access to that data, I do have to drill a hole in the firewall. So the
question is whether the change above is worthwhile or wrong-headed.
- Next message: Jeff Cochran: "Re: Classic ASP Page not running under IIS6.0"
- Previous message: Paul J. Landry: "IIS/Windows Permissions/Rights"
- In reply to: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Next in thread: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Reply: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
