Groups | Blog | Home
all groups > iis ftp > september 2004 >

iis ftp : ftp server permission


GitzJoey
9/26/2004 6:09:01 PM
hi, i want to configure my ftp server permission something like this

/ (root) R-X
/pub RWX

but i always bumped that i must set RWX to the root (using permission
wizard)
already tried with cacls/folder security :-(

i'm using win2k and iis 5 (patched)
thanks in advance

Bernard
9/27/2004 11:29:10 AM
what's the error msgs ? have you tried set it using windows explorer.

--
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/



[quoted text, click to view]

GitzJoey
9/28/2004 1:34:59 AM
this what i'm doing...
from iis mmc (administrative tool -> internet service manager) -> default
ftp site -> properties -> home directory -> (set permission to read and log
visits only, no check on write)
than from explorer to my ftproot folder, create new folder name "pub" ->
properties -> security
then uncheck allow inherit (there is everyone already set to full control)
also adding IUSR_(comp name) and set to full control

but when i check using ftp client, the pub directory still in read execute
mode

please help

[quoted text, click to view]

Bernard
9/28/2004 10:24:51 AM
don't quite get you.
what's the ACL for pub folder ?

d:\pub System Full control
Everyone ????

when you said you check using ftp client.
do you login as normal user or anonymous ?

--
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/



[quoted text, click to view]

Alun Jones [MSFT]
9/29/2004 9:09:42 AM
In the IIS Manager, check the properties on your FTP site - on the "Home
Directory" tab, is the "Write" box checked or unchecked?

Alun.
~~~~

[quoted text, click to view]

GitzJoey
9/29/2004 7:12:03 PM
sorry b'coz of my english :-(

i want to create directory on my ftproot folder
but users/anonymous user have full access to it (ReadWriteXcute)
the ftproot still Read and Execute only
so the structure maybe like this

/ (root) --> Read and Execute
/pub --> Read Write and Execute (full control to everyone)

but when i check using ftp client as anonymous login
the pub directory still only got the Read and Execute permission

the ACL on my pub directory
Anyone -> Full Control
IUSR_(comp_name) -> full control

please guide me...thanks

[quoted text, click to view]

Alun Jones [MSFT]
9/30/2004 10:56:23 AM
No amount of checkboxes in the IIS Administration tool can ever override
NTFS permissions. It simply can't. It would be a significant problem if it
could. Check the box, try it out, and see if it works the way you think.

Alun.
~~~~

[quoted text, click to view]

Bernard
9/30/2004 12:17:03 PM
You setting is correctly. are you saying with the setting anonymous user is
not able to write file ?
if yes, check the setting posted by Alun.

--
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/



[quoted text, click to view]

GitzJoey
9/30/2004 10:45:42 PM
it's not checked
b'coz if i checked, whole directory will be writeable, right?
but all i want just the pub directory that can be writeable....

[quoted text, click to view]

Alun Jones [MSFT]
10/1/2004 3:46:40 PM
[quoted text, click to view]

So you use NTFS permissions to make the root folder unwriteable. I believe
I stated earlier that nothing in the FTP server can trump NTFS permissions
on the files and folders themselves.

This setting indicates the maximum rights that are available to you under
the root directory, or under virtual directories you may create (the root
directory, and every virtual directory, can have such a setting placed on
it). The effective rights are a combination of those maximum rights that
you haev assigned, and the NTFS permissions that are set on the file or
folder you are accessing.

Alun.
~~~~

GitzJoey
10/2/2004 1:05:59 AM
ok i follow your suggestion...
but its makes the root folder is also writeable :-(
but all i want just the pub directory inside the root folder
see my illustration

ftproot -> read and execute only
ftproot/pub -> full control, read write and execute

thanks

[quoted text, click to view]

GitzJoey
10/2/2004 10:56:20 AM
alun thanks for guiding me this long
but my english just soo bad, i cant digest your writing correctly. :-(
ilustration, i want a ftp server so when i'm connect using a ftp client
as anonymouse will get

/ (root)
/pub (directory)

all user cant create folder/file in root folder, just in the pub directory
all user can create even delete a file...
can u tell me the step by step, in fresh iis(default setting of iis)

maybe i can understand if u guide me like this

[quoted text, click to view]

GitzJoey
10/3/2004 10:50:39 PM
nevermind....
already solved it :-)
success...thx to alun and bernard

[quoted text, click to view]

Bernard
10/4/2004 12:25:16 AM
Hmm¡£¡£¡£ so was it because of the 'write' property in the FTP site?

--
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/



[quoted text, click to view]

Got something to say? Click here to post a reply to this thread.
Don't see what you're looking for? Try a search.
View other messages about iis ftp
AddThis Social Bookmark Button
View Other Months
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
March 2008
April 2008
May 2008
June 2008
home · blog · groups Questions? Comments? Contact the dn