SteveS
Posts: 41
|
Posted: 03/21/2004, 1:05 AM |
|
Hi,
I'm interested in finding any recomendations regarding locking IIS and Windows XP PRO down before shipping my solution to my customers.
As part of my app my customer will get a standard PC running XP Pro with IIS, however, I'm not sure the current best practice regarding lock down. The customer will need access to the pc for backups etc, however, I don't want them filldling with the system (that will be done via remote support).
|
|
|
peterr
Posts: 5971
|
Posted: 03/21/2004, 7:47 AM |
|
I'm not sure what you mean by lockdowns? Could you please provide more details?
If you'd like to find out IIS limitations on Win XP then I recommend: http://www.google.com/search?q=windows+xp+pro+iis+limitations
_________________
Peter R.
YesSoftware Forums Moderator
For product support please visit http://support.yessoftware.com |
|
|
SteveS
Posts: 41
|
Posted: 03/21/2004, 10:13 AM |
|
Hi Peter,
When I refer to locking down IIS and XP I mean changing settings to stop the end user/network admin from messing around with the software which then results in tech support call (and also reducing hacking etc). For example, the network admin may not have admin rights to IIS and the directories where your data is.
I'm looking for a good "all round" guide if anyone know's of such a thing.
Thanks, Steve.
|
|
|
Oper
Posts: 1195
|
Posted: 03/21/2004, 12:25 PM |
|
best pratice for IIS are just 3 step.
1) Delete all Previous IIS setup WIndow do during Instalation
2) create a clean Empty new Setup
3) The root Folder shoudl'nt be on the same partion where the WINDOW
folder is.
4) Setup the Data ina a Different folder
and folder data setup in IIS as a No Read, No Browse, No Script.
and you will be safe!
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
|
|
SteveS
Posts: 41
|
Posted: 03/21/2004, 1:34 PM |
|
Thanks for the v. helpful info. I'm interested in your point regarding having IIS and the data folder on different partitions - what is your reasoning behind this?
What are your thoughts on setting anonymous access rights? My app only seems to work when the local admin is the anonymous user......
Thanks, this all helps.................
|
|
|
|