Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsWindows Server 2003Windows 2000Windows NTSmall Business ServerVirtual ServerExchange ServerIISHost Integration ServerISA ServerSMSWSUSMOMWindows Media ServerSecurityCertification
Related Topics
SQL ServerMS WindowsMS OfficePC HardwareMore Topics ...
Windows Server Forum / IIS / IIS Security / March 2007

Tip: Looking for answers? Try searching our database.

Is my setup secure?

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Kal525 - 28 Aug 2004 04:35 GMT
I have a photo album on my website on which I want restrict access to certain
personal albums.  In order to do this I opend up IIS manager and disabled
anonymous access for the specific folder and created a user account, say
"User" and made it part of the Guests user group.  I disabled logon locally
for this account in the local security settings and i set it so that the
password cannot be changed and it never expires.  Is this secure enough or is
there a way to further limit access.  What's weird is that I am still able to
access the private virtual directory with the "User" account even though the
"User" account is not part of the ACL of the physical folder.  Is this
normal?  Should I add it to the ACL and limit write access?  Furthermore, I'm
confused as to why the internet guest account is not included in the "deny
logon locally" policy in local security settings.  Is there something else
that prevents this account from logging in locally or is it just not an
issue?  Thanks in advance.
Reply to this Message
Andrew Pasco [MSFT] - 02 Sep 2004 06:32 GMT
--------------------
| Thread-Topic: Is my setup secure?
| thread-index: AcSMsACrhzpFbvsMRsmax+fnfWcbbQ==
[quoted text clipped - 33 lines]
| that prevents this account from logging in locally or is it just not an
| issue?  Thanks in advance.

HI Kal,

Check out AuthDiag which has just been release to help you secure and test
your enviroment.
It is availble from :-
http://www.microsoft.com/downloads/details.aspx?FamilyId=E90FE777-4A21-4066-
BD22-B931F7572E9A&displaylang=en

The Internet Guest USer account requires teh "Log on Locally" user right as
per :-
http://support.microsoft.com/default.aspx?scid=kb;en-us;184566

HTH
Andrew

This posting is provided "AS IS" with no warranties, and confers no rights
Reply to this Message
sdada - 31 Mar 2007 23:17 GMT
86355

From http://www.google.com/custom?cx=015258194770007199679:e2pdvdvh7_8&q=IIS+Internet
+Guest+Account&sa=Search&cof=CX:DevelopmentNow;FORID:10&ad=w9&num=10&rurl=http:/
/www.developmentnow.com/search.aspx?cx=015258194770007199679%3Ae2pdvdvh7_8&q=IIS
+Internet+Guest+Account&sa=Search&cof=FORID%3A10&client=pub-356848142164436

Posted via DevelopmentNow.com Group
http://www.developmentnow.com
Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2010 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.