Re: Limit some users?

From: David Wang [Msft] (someone_at_online.microsoft.com)
Date: 10/03/05

  • Next message: Jason: "Re: File System Object Lockdown...possible?" 
    Date: Sun, 2 Oct 2005 19:19:34 -0700

    Do NOT run IIS on a FAT32 partition. You are just asking for trouble because
    you have no security in that configuration. Running custom authentication
    will eventually cause you more problems than it is worth - suppose you want
    a Web hoster to host your website; they probably won't run your custom
    authentication (they do not like running arbitrary binaries on their servers
    because they have to protect themselves against both you and this binary),
    so you probably have to rewrite it all.

    I suggest you only allow IIS to serve content from a NTFS partition.

    I also suggest you stick with a web hoster to host your site and only do
    website development on your machine. 

    -- 
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Joker7" <sat_ring@hotmail.com> wrote in message
news:1128270378.787c436c75f1d6f71254e174463cd4f6@teranews...
"Miha Pihler [MVP]" <mihap-news@atlantis.si> wrote in message
news:e7YHIP2xFHA.1148@TK2MSFTNGP11.phx.gbl...
: Hi,
:
: One way to do this would be to apply NTFS permissions on the web content.
Of
: course you would have to remove permissions such as Authenticated Users
: Group, IUSR_<Computer Name>, etc. Then place the users (or your own
groups)
: and allow these users only read permissions.
:
: Users who will not have read permissions will be denied access.
:
: IIS will always honor NTFS permissions...
:
: I hope this helps,
:
: -- 
: Mike
: Microsoft MVP - Windows Security
:
: "Joker7" <sat_ring@hotmail.com> wrote in message
: news:1128253607.2aec507a71ec49dbce63317a5ba900a9@teranews...
I forgot to say that the drive is fat32 and not NTFS
Cheers
Chris
  • Next message: Jason: "Re: File System Object Lockdown...possible?"

    Relevant Pages

    • Re: FTP control
      ... > I would like to use NTFS security settings to control who ... I would suggest getting a third party FTP server, ... if you set quota and these permissions for that group you can ... Information Server (IIS) Web site, ...
      (microsoft.public.win2000.security)
    • Re: IIS 5 looses authenticated user
      ... > We are using NTFS Permissions. ... >> then authentication if any, then web permission, and finally ntfs ... >> localsystem for inetinfo, iwam for dllhost, and request identity is the ...
      (microsoft.public.inetserver.iis.security)
    • Re: Integrated Authentication - one way cross forest trust
      ... You must set the permissions in IIS and on the folder you are ... > and is in the trusted domain) we are unable to get past the authentication ... this would lead me to believe it is specific to IIS. ... > Logon Failure: ...
      (microsoft.public.inetserver.iis)
    • Re: Help using impersonation - permission problems.
      ... if you use identity impersonate with nt authentication, permissions are only good on the iis server. ... My IIS is set to use Windows NT ...
      (microsoft.public.dotnet.framework.aspnet)
    • Re: Virtual Directory - Permission Denied with fso CopyFile
      ... if you did Basic authentication using vdirUser and it *still* does not ... The "Connect As" account controls the user credential that IIS uses to ... PUT verb only when "Write" permissions is enabled in IIS Manager UI. ...
      (microsoft.public.inetserver.iis)