I'm trying to setup a windows 2000 server, IIS 5, for hosting. The problem is: How can i secure my customers pages. With a simple ASP script, using FileSystemObject, any customer can read what ever he want in the HDD. So he can read also ASP source of other customers.
For the other part of HDD i'm thinking to remove everyone access at NTFS and put only Administrators and SYSTEM. But what to do with users folder. They of course need INETUSR read. So they can read each other script sources.
Exist any solution for this?