Solved

Security regarding IUSR_ASP & IWAM_ASP on IIS 6.0

Posted on 2007-12-06
3
673 Views
Last Modified: 2008-03-06
Friends,
             Will there be any security risk for my system after i allow FULL ACCESS to IUSR_ASP & IWAM_ASP IIS accounts on websites that i host from Windows 2003 Enterprise Edition ? If yes, then what do i need to take into consideration ? waiting for your reply. Thank you


Beginner
http://healthtreatments.blogspot.com
0
Comment
Question by:umnict
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 11

Accepted Solution

by:
saleek earned 125 total points
ID: 20418313
Hi there,

Firstly, Why would you want to give the entire website full access?
Do you mean the root folder or a subfolder?
Assigning full access to this account for specific subfolders is not a problem and you are safe to do so providing they are a logical layer of your app and do not contain executable scripts etc.

For example, giving full permission to the account on a subfolder where images/pdfs are created and stored is perfectly safe.

Giving full permission to the account on subfolders/root folders where there are scripts etc is not recommended as far as I am aware.

Saying this, the general consensus would be that there is no security risk unless some hostile
person can somehow take control of your ASP.Net app.

The following link can give you some details on what permissions the aspnet account has by default: http://support.microsoft.com/kb/317012

Hope that helps.

regards,

KS


0
 
LVL 1

Expert Comment

by:Vee_Mod
ID: 20491688
No Response to Expert.
Force closed.
Vee_Mod
Community Support Moderator
0

Featured Post

Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

First of all, clustering IIS is something you should rarely consider doing. In almost all cases, Microsoft Network Load Balancing (NLB) (http://technet.microsoft.com/en-us/library/cc758834(WS.10).aspx) is a much better solution when you need to p…
What is an ISAPI filter?   •      It's an assembly (.dll file) that can add or change the way IIS works.   •      They can be enabled globally for your web server or on a site-by-site basis.   When the IIS server receives a request, enabling the ISAPI fi…
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question