I have an FTP site using IIS 6 and allow users to log on with the anonymus account. I want to allow people to ftp files, but not want to allow them to create sub-directories in the FTP root directory.

How do prevent the creation of the sub-directories?

Hello,

Remove write NTFS permission for anonymous user on FTP root folder.

HTH
--
Ganesh Anekar
Microsoft Developer Support
Internet Information Server
*********************************************************************
[quoted text, click to view]
account name for newsgroup participation only.<<

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.

© 2003 Microsoft Corporation. All rights reserved.
*********************************************************************
[quoted text, click to view]
account. I want to allow people to ftp files, but not want to allow them to
create sub-directories in the FTP root directory.
[quoted text, click to view]

On Fri, 16 Jul 2004 16:02:01 -0700, "Russ"
[quoted text, click to view]

Allowing the Anonymous user account write access to your FTP server is
a BAD idea. Think about it for a minute, do you REALLY want anyone,
anywhere to be able to upload anything they want to your server ?

If you do this you will most likely end up getting 't@gged'.


Regards,

Paul Lynch

[quoted text, click to view]

i think that's the point, to make it easy for people to upload files to your
ftp server, else you wouldn't be running it in the first place. it's very
simple to restrict file-only uploads to a specific directory and turn quota
management on for that folder.

additionally, it's considered more secure to allow ONLY anonymous ftp
logins, opposed to allowing users to login with a username/password because
those unencrypted credentials can be sniffed by a hacker and then used later
to login, perhaps with elevatated privileges, depending on the rights
assigned to that account. it's simply safer to allow anonymous logins only
and place quota management and access restrictions on the upload folder
(using NTFS ACLs).

--
francis

[quoted text, click to view]
anonymus account. I want to allow people to ftp files, but not want to
allow them to create sub-directories in the FTP root directory.
[quoted text, click to view]

You can do this using NTFS permissions. Use Explorer to bring up
Properties on the directory that you want users to be able to upload to.
Under the "Security" tab, click "Advanced". You can use this dialog to
change more detailed security flags on the folder. Notice that, when you
add or edit a setting here, there are two "Create" options - "Create Files
/ Write Data", and "Create Folders / Append Data". Make sure that "Create
Files" is checked, but "Create Folders" is unchecked, for the user you will
be blocking.

Alun.
~~~~