Guest dusty Posted July 8, 2008 Posted July 8, 2008 What is best practice for security permissions on a 2003 web server's C drive? Here are my current security permissions after setting up a new web server and joined to domain Local Admin group - FC Creator Owner - FC Everyone - Special (default permissions) System - FC Users group - default permissions I have a D drive were inetpub has been configured with websites and the permissions are the same for this drive. Shouldn't everyone and creator owner be removed for tighter security? Quote
Guest S. Pidgorny Posted July 9, 2008 Posted July 9, 2008 There are security templates by Microsoft for you to use: http://support.microsoft.com/kb/317376 Do you need anonymous access? -- Svyatoslav Pidgorny, MS MVP - Security, MCSE -= F1 is the key =- http://sl.mvps.org http://msmvps.com/blogs/sp "dusty" <dusty@discussions.microsoft.com> wrote in message news:2266E6D6-1FC6-495C-B7E2-D61D8248E069@microsoft.com...<span style="color:blue"> > What is best practice for security permissions on a 2003 web server's C > drive? Here are my current security permissions after setting up a new > web > server and joined to domain > Local Admin group - FC > Creator Owner - FC > Everyone - Special (default permissions) > System - FC > Users group - default permissions > > I have a D drive were inetpub has been configured with websites and the > permissions are the same for this drive. > > Shouldn't everyone and creator owner be removed for tighter security? </span> Quote
Guest dusty Posted July 9, 2008 Posted July 9, 2008 Yes, anonymous access is needed. "S. Pidgorny <MVP>" wrote: <span style="color:blue"> > There are security templates by Microsoft for you to use: > http://support.microsoft.com/kb/317376 > Do you need anonymous access? > > -- > Svyatoslav Pidgorny, MS MVP - Security, MCSE > -= F1 is the key =- > > http://sl.mvps.org http://msmvps.com/blogs/sp > > "dusty" <dusty@discussions.microsoft.com> wrote in message > news:2266E6D6-1FC6-495C-B7E2-D61D8248E069@microsoft.com...<span style="color:green"> > > What is best practice for security permissions on a 2003 web server's C > > drive? Here are my current security permissions after setting up a new > > web > > server and joined to domain > > Local Admin group - FC > > Creator Owner - FC > > Everyone - Special (default permissions) > > System - FC > > Users group - default permissions > > > > I have a D drive were inetpub has been configured with websites and the > > permissions are the same for this drive. > > > > Shouldn't everyone and creator owner be removed for tighter security? </span> > > > </span> Quote
Guest S. Pidgorny Posted July 10, 2008 Posted July 10, 2008 So you have to make provision for that, allowing access to the anonymous account to the content. Hope everything is clear about the templates. regards -- Svyatoslav Pidgorny, MS MVP - Security, MCSE -= F1 is the key =- http://sl.mvps.org http://msmvps.com/blogs/sp "dusty" <dusty@discussions.microsoft.com> wrote in message news:7F56C709-FAD8-42E7-8A5F-056708F9F759@microsoft.com...<span style="color:blue"> > Yes, anonymous access is needed. > > "S. Pidgorny <MVP>" wrote: ><span style="color:green"> >> There are security templates by Microsoft for you to use: >> http://support.microsoft.com/kb/317376 >> Do you need anonymous access? >> >> -- >> Svyatoslav Pidgorny, MS MVP - Security, MCSE >> -= F1 is the key =- >> >> http://sl.mvps.org http://msmvps.com/blogs/sp >> >> "dusty" <dusty@discussions.microsoft.com> wrote in message >> news:2266E6D6-1FC6-495C-B7E2-D61D8248E069@microsoft.com...<span style="color:darkred"> >> > What is best practice for security permissions on a 2003 web server's C >> > drive? Here are my current security permissions after setting up a >> > new >> > web >> > server and joined to domain >> > Local Admin group - FC >> > Creator Owner - FC >> > Everyone - Special (default permissions) >> > System - FC >> > Users group - default permissions >> > >> > I have a D drive were inetpub has been configured with websites and the >> > permissions are the same for this drive. >> > >> > Shouldn't everyone and creator owner be removed for tighter security?</span> >> >> >> </span></span> Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.