CodeCharge Studio
search Register Login  

Visual Web Reporting

Visually create Web Reports in PHP, ASP, .NET, Java, Perl and ColdFusion.
CodeCharge.com

YesSoftware Forums -> CodeCharge Studio -> ASP

 IIS and Win XP Lockdown question

 Print topic Send topic

Author Message
SteveS

Posts: 41
Posted: 03/21/2004, 1:05 AM
Hi,

I'm interested in finding any recomendations regarding locking IIS and Windows XP PRO down before shipping my solution to my customers.

As part of my app my customer will get a standard PC running XP Pro with IIS, however, I'm not sure the current best practice regarding lock down. The customer will need access to the pc for backups etc, however, I don't want them filldling with the system (that will be done via remote support).
View profile  Send private message
peterr


Posts: 5971
Posted: 03/21/2004, 7:47 AM
I'm not sure what you mean by lockdowns? Could you please provide more details?
If you'd like to find out IIS limitations on Win XP then I recommend:
http://www.google.com/search?q=windows+xp+pro+iis+limitations
_________________
Peter R.
YesSoftware Forums Moderator
For product support please visit http://support.yessoftware.com
View profile  Send private message
SteveS

Posts: 41
Posted: 03/21/2004, 10:13 AM
Hi Peter,

When I refer to locking down IIS and XP I mean changing settings to stop the end user/network admin from messing around with the software which then results in tech support call (and also reducing hacking etc). For example, the network admin may not have admin rights to IIS and the directories where your data is.

I'm looking for a good "all round" guide if anyone know's of such a thing.

Thanks, Steve.
View profile  Send private message
Oper


Posts: 1195
Posted: 03/21/2004, 12:25 PM
best pratice for IIS are just 3 step.

1) Delete all Previous IIS setup WIndow do during Instalation

2) create a clean Empty new Setup

3) The root Folder shoudl'nt be on the same partion where the WINDOW
folder is.

4) Setup the Data ina a Different folder
and folder data setup in IIS as a No Read, No Browse, No Script.

and you will be safe!
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)

http://www.PremiumWebTemplate.com
Affiliation Web Site Templates

Please do backup first
View profile  Send private message
SteveS

Posts: 41
Posted: 03/21/2004, 1:34 PM
Thanks for the v. helpful info. I'm interested in your point regarding having IIS and the data folder on different partitions - what is your reasoning behind this?

What are your thoughts on setting anonymous access rights? My app only seems to work when the local admin is the anonymous user......

Thanks, this all helps.................
View profile  Send private message

Add new topic Subscribe to topic   


These are Community Forums for users to exchange information.
If you would like to obtain technical product help please visit http://support.yessoftware.com.

Internet Database

Visually create Web enabled database applications in minutes.
CodeCharge.com

Home   |    Search   |    Members   |    Register   |    Login


Powered by UltraApps Forum created with CodeCharge Studio
Copyright © 2003-2004 by UltraApps.com  and YesSoftware, Inc.