|
|
You're in the
iis ftp
group:IIS Security
iis ftp:
Permissions? For some reason, it appears that only FTP permissions are being recognized. I setup a local user with Read & Execute NTFS permissions to a directory and set the IIS/FTP security on the home directory to Read/Write/Log and I can still write to the directory via FTP. I was under the impression that If Web permissions and NTFS permissions differ for a directory or file, the more restrictive settings are used. This does not
p.s. This is a windows 2003 server running IIS 6.0 and yes, i've read the
articles. [quoted text, click to view] "Jonathan Lerche" wrote:
> Can I manage security per user/group to a home directory using NTFS > Permissions? For some reason, it appears that only FTP permissions are being > recognized. I setup a local user with Read & Execute NTFS permissions to a > directory and set the IIS/FTP security on the home directory to > Read/Write/Log and I can still write to the directory via FTP. I was under > the impression that If Web permissions and NTFS permissions differ for a > directory or file, the more restrictive settings are used. This does not
Bernard, thanks for your help/resposne.
I "re-tested" and found that there was a rather severe ID10T error. IIS Perms: Read, Write, Log NTFS Perms: Deny Write Put Result: Access Denied IIS Perms: Read, Write, Log NTFS Perms: Modify Put Result: Can write to directory. IIS Perms: Read, Log NTFS Perms: Modify Put Result: Access Denied IIS Perms: Read, Write, Log NTFS Perms: Read & Execute/List/Read Put Result: Access Denied As you would expect. Anyhow, I think it's time to fess up. During my testing i was enabling the "modify" permission, that of course also enables the "write" permission. However, when unchecking the "modify" permission it leaves the "write" permission enabled... thus the ID10T. Thanks again for your time and I hope this helps someone else out. -Jonathan [quoted text, click to view] "Bernard Cheah [MVP]" wrote:
> Not in my testing :) > The most restrictive will be applied. Are you sure the user doesn't belong > to a user group that have access to the folder or file? > Create a new user to test it...... > -- > Regards, > Bernard Cheah > http://www.iis-resources.com/ > http://www.iiswebcastseries.com/ > http://www.msmvps.com/blogs/bernard/ > > > "Jonathan Lerche" <JonathanLerche@discussions.microsoft.com> wrote in > message news:38F2766C-C19E-42F4-8D77-618A0243453B@microsoft.com... > > p.s. This is a windows 2003 server running IIS 6.0 and yes, i've read the > > articles. > > > > "Jonathan Lerche" wrote: > > > >> Can I manage security per user/group to a home directory using NTFS > >> Permissions? For some reason, it appears that only FTP permissions are > >> being > >> recognized. I setup a local user with Read & Execute NTFS permissions to > >> a > >> directory and set the IIS/FTP security on the home directory to > >> Read/Write/Log and I can still write to the directory via FTP. I was > >> under > >> the impression that If Web permissions and NTFS permissions differ for a > >> directory or file, the more restrictive settings are used. This does not > >> appear to be the case here. > >
Secondly, the local Users group is granted special write permissions to newly
created directories. [quoted text, click to view] "Bernard Cheah [MVP]" wrote:
> Not in my testing :) > The most restrictive will be applied. Are you sure the user doesn't belong > to a user group that have access to the folder or file? > Create a new user to test it...... > -- > Regards, > Bernard Cheah > http://www.iis-resources.com/ > http://www.iiswebcastseries.com/ > http://www.msmvps.com/blogs/bernard/ > > > "Jonathan Lerche" <JonathanLerche@discussions.microsoft.com> wrote in > message news:38F2766C-C19E-42F4-8D77-618A0243453B@microsoft.com... > > p.s. This is a windows 2003 server running IIS 6.0 and yes, i've read the > > articles. > > > > "Jonathan Lerche" wrote: > > > >> Can I manage security per user/group to a home directory using NTFS > >> Permissions? For some reason, it appears that only FTP permissions are > >> being > >> recognized. I setup a local user with Read & Execute NTFS permissions to > >> a > >> directory and set the IIS/FTP security on the home directory to > >> Read/Write/Log and I can still write to the directory via FTP. I was > >> under > >> the impression that If Web permissions and NTFS permissions differ for a > >> directory or file, the more restrictive settings are used. This does not > >> appear to be the case here. > >
Not in my testing :)
The most restrictive will be applied. Are you sure the user doesn't belong to a user group that have access to the folder or file? Create a new user to test it...... -- Regards, Bernard Cheah http://www.iis-resources.com/ http://www.iiswebcastseries.com/ http://www.msmvps.com/blogs/bernard/ "Jonathan Lerche" <JonathanLerche@discussions.microsoft.com> wrote in message news:38F2766C-C19E-42F4-8D77-618A0243453B@microsoft.com... [quoted text, click to view] > p.s. This is a windows 2003 server running IIS 6.0 and yes, i've read the > articles. > > "Jonathan Lerche" wrote: > >> Can I manage security per user/group to a home directory using NTFS >> Permissions? For some reason, it appears that only FTP permissions are >> being >> recognized. I setup a local user with Read & Execute NTFS permissions to >> a >> directory and set the IIS/FTP security on the home directory to >> Read/Write/Log and I can still write to the directory via FTP. I was >> under >> the impression that If Web permissions and NTFS permissions differ for a >> directory or file, the more restrictive settings are used. This does not >> appear to be the case here.
Don't quite get your previous msgs. so does this mean, you have fixed your
problem? -- Regards, Bernard Cheah http://www.iis-resources.com/ http://www.iiswebcastseries.com/ http://msmvps.com/blogs/bernard/ "Jonathan Lerche" <JonathanLerche@discussions.microsoft.com> wrote in message news:724394A8-2ED8-490F-A842-7279F47FB3B4@microsoft.com... [quoted text, click to view] > Secondly, the local Users group is granted special write permissions to > newly > created directories. > > "Bernard Cheah [MVP]" wrote: > >> Not in my testing :) >> The most restrictive will be applied. Are you sure the user doesn't >> belong >> to a user group that have access to the folder or file? >> Create a new user to test it...... >> -- >> Regards, >> Bernard Cheah >> http://www.iis-resources.com/ >> http://www.iiswebcastseries.com/ >> http://www.msmvps.com/blogs/bernard/ >> >> >> "Jonathan Lerche" <JonathanLerche@discussions.microsoft.com> wrote in >> message news:38F2766C-C19E-42F4-8D77-618A0243453B@microsoft.com... >> > p.s. This is a windows 2003 server running IIS 6.0 and yes, i've read >> > the >> > articles. >> > >> > "Jonathan Lerche" wrote: >> > >> >> Can I manage security per user/group to a home directory using NTFS >> >> Permissions? For some reason, it appears that only FTP permissions >> >> are >> >> being >> >> recognized. I setup a local user with Read & Execute NTFS permissions >> >> to >> >> a >> >> directory and set the IIS/FTP security on the home directory to >> >> Read/Write/Log and I can still write to the directory via FTP. I was >> >> under >> >> the impression that If Web permissions and NTFS permissions differ for >> >> a >> >> directory or file, the more restrictive settings are used. This does >> >> not >> >> appear to be the case here. >> >> >>
Don't see what you're looking for? Try a search.
|
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
March 2008
April 2008
May 2008
June 2008
| home · blog · groups | Questions? Comments? Contact the dn |