Windows 2003 hard disk security settings [for ASP-class Web sites]
Last Update:2017-02-28
Source: Internet
Author: User
window| Security | Hard drive C: Partition section:
C:\
Administrators All
Everyone without
System All
of course, this to the following directory is to be changed
C:\Windows
Administrators All
Creator owner
Not an inherited
.
only subfolders and files
completely
Power Users
Modify, read and run, List folder directories, read, write
System All
Users Read and run, List folder directories, read
C:\Program Files
Everyone only has this folder
Not an inherited
.
List Folder/Read Data
Administrators All
IIS_WPG only this folder
list File/Read Data
Read Properties
Read Extended Properties
Read Permissions
c:\Program Files\Common Files
Administrators All
Creator owner
Not an inherited
.
only subfolders and files
completely
Power Users
Modify, read and run, List folder directories, read, write
System All
TERMINAL SERVER Users (if you have this user)
Modify, read and run, List folder directories, read, write
Users Read and run, List folder directories, read
If our software is installed:
C:\Program Files\liweiwensoft
Everyone reads and runs, lists folder directories, reads
Administrators All
IIS_WPG reads and runs, lists folder directories, reads
C:\Program Files\dimac (if there is this directory)
Everyone reads and runs, lists folder directories, reads
Administrators All
C:\Program Files\complus Applications (if any)
Administrators All
C:\Program files\gflsdk (if any)
Administrators All
Creator owner
Not an inherited
.
only subfolders and files
completely
Power Users
Modify, read and run, List folder directories, read, write
System All
TERMINAL SERVER Users
Modify, read and run, List folder directories, read, write
Users Read and run, List folder directories, read
Everyone reads and runs, lists folder directories, reads
C:\Program Files\installshield Installation information (if any)
C:\Program files\internet Explorer (if available)
C:\Program files\netmeeting (if any)
Administrators All
C:\Program files\windowsupdate
Creator owner
Not an inherited
.
only subfolders and files
completely
Administrators All
Power Users
Modify, read and run, List folder directories, read, write
System All
D: Partition section: By default, a Web site is an IIS user
D:\ (If the user site content is placed in this section)
Administrators Full Permissions
D:\Host (if this directory is used to place user site content)
Administrators Full Permissions
D:\Host\ZxsV (site user directory)
Administrators Full Permissions
IIS_WPG reads and runs, lists folder directories, reads
d:\Host\ZxsV\Data (site user database directory)
Administrators Full Permissions
IIS_WPG Read and run, listing folder directories, reading, rewriting
D:\Host\ZxsV\Web (IIS access directory)
Administrators Full Permissions
IIS_WPG reads and runs, lists folder directories, reads
d:\Host\ZxsV\WebLog (log directory)
Administrators All permissions
System All
d:\Host\ZxsV\Web\Upload (website user data upload directory)
Administrators Full Permissions
IIS_WPG Read and run, listing folder directories, reading, rewriting
No ASP execution permissions, this is very important, this is only a definition, specifically to see how the site is set up
d:\Tools\ (Tools catalog)
Administrators Full Permissions
D:\Tools\Serv-U
Administrators Full Permissions
Guest rejects
analogy is the
.