Solved

What does W2K Everyone account do and can I remove it?

Posted on 2006-11-17
1
585 Views
Last Modified: 2012-06-21
Hi, I'm putting up a web server and will host a web site for experience and fun. I use Windows 2000 Advance Server, IIS 5 and Access database on my C drive. Now I have 2 questions about security:
1. it is said that you should store your database on a different drive for security. Is it really helpful? (My D drive has no OS installed).
2: I went to the properties of both my c and d drive. On the security tab. There's only one user: Everyone. And he is given full control. If I remove this user, does it mean IUSR_computerName can't access my web page even if I add him on the security tab and assign him read & Execute permission. And will administrator be able to do his job if I add him and give him full control.

In fact, what exactly is this Everyone thing?

Thank you
0
Comment
Question by:causewaybay
1 Comment
 
LVL 16

Accepted Solution

by:
Brian Pringle earned 250 total points
ID: 17970078
Database:

A separate drive is recommended, but at a minimum, put it in a folder that is not under "C:\Inetpub".  Put is somewhere else, like "C:\WebDatabase".  


Permissions:

Do *NOT* use the "Everyone" group for any of your folders.  At the root of the C: drive, change the permissions as follows.  Propagate the settings down to subfolders.

Remove -- Everyone
Add --
    Administrators          Full Control
    SYSTEM                   Read Only
    Users                       Read Only

Then, change the permissions of the C:\Inetpub folder as follows.

Add --
    Administrators          Full Control
    SYSTEM                   Read Only
    Users                       Read Only
    IUSR_compname       Read and execute
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
Encryption for Business Encryption (https://en.wikipedia.org/wiki/Encryption) ensures the safety of our data when sending emails. In most cases, to read an encrypted email you must enter a secret key that will enable you to decrypt the email. T…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now