Windows 2003 hard disk security settings [for ASP-class Web sites]

window| Security | Hard drive C: Partition section:


C:\


Administrators All


Everyone without


System All


of course, this to the following directory is to be changed


C:\Windows


Administrators All


Creator owner


Not an inherited
.

only subfolders and files


completely


Power Users


Modify, read and run, List folder directories, read, write


System All


Users Read and run, List folder directories, read


C:\Program Files


Everyone only has this folder


Not an inherited
.

List Folder/Read Data


Administrators All


IIS_WPG only this folder


list File/Read Data


Read Properties


Read Extended Properties


Read Permissions


c:\Program Files\Common Files


Administrators All


Creator owner


Not an inherited
.

only subfolders and files


completely


Power Users


Modify, read and run, List folder directories, read, write


System All


TERMINAL SERVER Users (if you have this user)


Modify, read and run, List folder directories, read, write


Users Read and run, List folder directories, read


If our software is installed:


C:\Program Files\liweiwensoft


Everyone reads and runs, lists folder directories, reads


Administrators All


IIS_WPG reads and runs, lists folder directories, reads


C:\Program Files\dimac (if there is this directory)


Everyone reads and runs, lists folder directories, reads


Administrators All


C:\Program Files\complus Applications (if any)


Administrators All


C:\Program files\gflsdk (if any)


Administrators All


Creator owner


Not an inherited
.

only subfolders and files


completely


Power Users


Modify, read and run, List folder directories, read, write


System All


TERMINAL SERVER Users


Modify, read and run, List folder directories, read, write


Users Read and run, List folder directories, read


Everyone reads and runs, lists folder directories, reads


C:\Program Files\installshield Installation information (if any)


C:\Program files\internet Explorer (if available)


C:\Program files\netmeeting (if any)


Administrators All


C:\Program files\windowsupdate


Creator owner


Not an inherited
.

only subfolders and files


completely


Administrators All


Power Users


Modify, read and run, List folder directories, read, write


System All


D: Partition section: By default, a Web site is an IIS user


D:\ (If the user site content is placed in this section)


Administrators Full Permissions


D:\Host (if this directory is used to place user site content)


Administrators Full Permissions


D:\Host\ZxsV (site user directory)


Administrators Full Permissions


IIS_WPG reads and runs, lists folder directories, reads


d:\Host\ZxsV\Data (site user database directory)


Administrators Full Permissions


IIS_WPG Read and run, listing folder directories, reading, rewriting


D:\Host\ZxsV\Web (IIS access directory)


Administrators Full Permissions


IIS_WPG reads and runs, lists folder directories, reads


d:\Host\ZxsV\WebLog (log directory)


Administrators All permissions


System All


d:\Host\ZxsV\Web\Upload (website user data upload directory)


Administrators Full Permissions


IIS_WPG Read and run, listing folder directories, reading, rewriting


No ASP execution permissions, this is very important, this is only a definition, specifically to see how the site is set up


d:\Tools\ (Tools catalog)


Administrators Full Permissions


D:\Tools\Serv-U


Administrators Full Permissions


Guest rejects


analogy is the
.