About the security permissions configuration checklist for running ASP servers

So happy ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ 4 days, the ASP program to run, the most secure server permissions configured out. Here is said is only for the ASP program to run the permission configuration, php,jsp has not been studied, but the estimates are similar. About running the ASP server security permissions Configuration Checklist: All of the disks are set to the Administrators group, and if you're afraid of someone else upgrading the administrator, you can set up your own administrator, such as the admin or your name. C:--->administraotors group c:program filescommon Files--->administrators group +everyone (List folder directory for read and run, read) C: WINNTSYSTEM32INETSRV--->administrators group +everyone (for reading and running, listing folder directories, reading) c:winnttemp--->administrators group +iusr_ MACHINE (for reading, write) because the program needs to write like temp, there are other, but the error can be used guests group about the system disk can be configured as above, because after the n test, if not so, there will be 500 errors, or access page will let you enter the Administrator account number and password ( In this case, I changed the everyone above to the IWAM_machine account number, and the permission is completely also let input, do not understand the site list: D:--->administrators group d:web--->administrators group +iusr_machine (read, write) can also be replaced by guests, not recommended, here if it is their own server, so that only the database has written, other for reading, if it is to provide space for others, that even if: Analysis: About the system disk to do so, even if common and System32 were visited, listing the directory, but he did not write permission, can not upload, so can not run their own programs, in turn, he can run the System32 program can do? Then set those programs to the permissions you want, hehe ... Next is the Temp folder, only read and write, think about it, if he uploaded the program down here, he can't run, what can he do? As a good administrator of a server, I think he should clean up the temp files regularly, which is beyond doubt. About the web directory, only read and write, read for browsing, write as write (plainly, is the post), there is no running permissions, upload the overflow tool, of course, error URL errors or other, hehe. or above, if it is their own server, so that only the database has written, other for reading, if it is to provide space for others, that even: All right, it's finally done in the morning, pervert? That's it, hey ~ ~ Editor: Snowflakes (TEL: (010) 68476636-8008) to force (0 votes) of the (0 Votes) nonsense (0 Votes) Professional (0 Votes) The title party (0 Votes) passing (0 votes) Original: About running ASP server security permissions configuration list return to network security home