Web hosting company grants write access to shared server C: drive -- OK?
Posted on 2002-07-30
I am a DotNET newbie who recently hosted my first web site on a shared Win 2000 server, with a hosting company that shall remain nameless (for obvious reasons). Although my app is on the D: drive, I accidentally discovered that I appear to have read/write access to the entire C: drive!
It seems like I could could hack the system to my hearts content. Since this is a shared server, I assume my app is at the mercy of other users who may have also discovered this "little" security flaw.
Question: is this normal or common for a DotNET web app deployed on a Windows 2000 server?
Thanks in advance,