>I would strongly recommend avoiding the use of "Everyone" when setting
>filesystem permissions, though. Use "Authenticated Users" instead. The
>IUSR_MACHINENAME account is also a member of that group.
Excellent. I read about not to use "EVERYONE" account, however, I forgot (can't focus well these days, unfortunately). Now, how would you determine if some of the users from the list may be "fakeID"/backdoor user account? One way, I guess might be, get mandatory or system default user account list for NT/XP/given win OS and then separate them from the rest, then examine the remaining? better approach?
I appreciate it.
Don
>
>> Man! you're very very detail-oriented, a great quality, I'd say.
>
>It's a necessary quality for configuring servers, unfortunately.
>
>Dave Watts, CTO, Fig Leaf Software
>http://www.figleaf.com/
>phone: 202-797-5496
>fax: 202-797-5444
[Todays Threads]
[This Message]
[Subscription]
[Fast Unsubscribe]
[User Settings]
- RE: Challenge/Response and IIS Security Dave Watts
- RE: Challenge/Response and IIS Security Dave Watts
- RE: Challenge/Response and IIS Security Dave Watts
- RE: Challenge/Response and IIS Security Dave Watts
- RE: Challenge/Response and IIS Security Dave Watts
- RE: Challenge/Response and IIS Security Dave Watts
- RE: Challenge/Response and IIS Security Dave Watts