"StevieD" <StevieD@discussions.microsoft.com> wrote in message
news:BBFAF676-3D1E-40F4-B235-BA79AA93E4AA@microsoft.com...
> Our Setup: IIS 5.0 FTP site is pointing to the home directory of
> inetpub\ftproot. Within here, we have separate folders setup for each
> customer. The permissions on these folders are restricted to
> administrators
> and the local user account (customer account), which has read access. So
> when user Bob logs into the FTP site, they are directed to their folder
> called Bob.
>
> Now, we have an issue with permissions, where authenticated users using
> Vista & IE, are defaulted to the full directory listing of the ftproot
> folder. This enables any potential customer with a user\pass to view our
> customer base. Using Windows and going through Internet Explorer to
> access
> the FTP site (rather than FTP client software or UNIX for example), it
> seems
> being defaulted to the root of the directory is only possible with Vista
> (not
> XP). Once logged in using Vista, it defaults to the ftproot directory
> (where
> you can view all folders), instead of going straight to the particular
> folder
> for the customer. Why is this?
>
> I’ve tried changing the ‘Apply onto’ setting to Subfolders only &
> Subfolders
> and files only, but this then doesn’t allow the user to login, as they don’t
> have read permissions to ftproot where their folder is located. I’ve even
> tried removing some of the explicit permissions like ‘List Folder’ etc,
> but
> unless the permissions are set as shown, any user account cannot login.
>
> How else could I set this up, to allow users to login, but to prevent the
> full directory listing of ftproot being shown when using Vista? I will
> test
> to see if viewing the full directory listing is possible using an FTP
> client
> like SmartFTP or CuteFTP.
>