Re: How do you lock down a web site with W2k3/IIS6?
this may seem silly, but it almost sounds like there is a comment that is improperly opened/closed. this happened to us recently and nearly drove us crazy. what do you get when you look at the source? On Jan 15, 2008 7:01 PM, Jim McAtee [EMAIL PROTECTED] wrote: I have a web site that is to be accessible only to Windows domain members. I'm moving it from a W2k/IIS5/CF5 server to a W2k3/IIS6/CF8 server in a new domain. With W2k/IIS5 this seemed relatively straightforward. Just give the root folder of the private web site the same permissions as a public web site, then add IUSR_MACHINENAME to the ACL with Deny for all permissions. On the new server that same strategy gives fairly strange results - it looks like the user authenticates OK, but I get no page output. If CF debugging is enabled for the IP address, I see no page output, but the CF debugging output is shown and lists execution times for all the CF templates for the page generation. Oddly enough, I get the same behavior in IIS6 if I use IIS's integrated directory security instead of Windows folder ACLs. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;160198600;22374440;w Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:296640 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: How do you lock down a web site with W2k3/IIS6?
In the source, above the CF debugging output I have just some white space. Numerous CRLFs, but also a few tabs at the beginning of some lines. - Original Message - From: Crow T. Robot [EMAIL PROTECTED] To: CF-Talk cf-talk@houseoffusion.com Sent: Tuesday, January 15, 2008 6:42 PM Subject: Re: How do you lock down a web site with W2k3/IIS6? this may seem silly, but it almost sounds like there is a comment that is improperly opened/closed. this happened to us recently and nearly drove us crazy. what do you get when you look at the source? On Jan 15, 2008 7:01 PM, Jim McAtee [EMAIL PROTECTED] wrote: I have a web site that is to be accessible only to Windows domain members. I'm moving it from a W2k/IIS5/CF5 server to a W2k3/IIS6/CF8 server in a new domain. With W2k/IIS5 this seemed relatively straightforward. Just give the root folder of the private web site the same permissions as a public web site, then add IUSR_MACHINENAME to the ACL with Deny for all permissions. On the new server that same strategy gives fairly strange results - it looks like the user authenticates OK, but I get no page output. If CF debugging is enabled for the IP address, I see no page output, but the CF debugging output is shown and lists execution times for all the CF templates for the page generation. Oddly enough, I get the same behavior in IIS6 if I use IIS's integrated directory security instead of Windows folder ACLs. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;160198600;22374440;w Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:296641 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: How do you lock down a web site with W2k3/IIS6?
Ack... just found the problem... there was a cfabort firing in Application.cfm when run on the new server. - Original Message - From: Jim McAtee [EMAIL PROTECTED] To: CF-Talk cf-talk@houseoffusion.com Sent: Tuesday, January 15, 2008 7:00 PM Subject: Re: How do you lock down a web site with W2k3/IIS6? In the source, above the CF debugging output I have just some white space. Numerous CRLFs, but also a few tabs at the beginning of some lines. - Original Message - From: Crow T. Robot [EMAIL PROTECTED] To: CF-Talk cf-talk@houseoffusion.com Sent: Tuesday, January 15, 2008 6:42 PM Subject: Re: How do you lock down a web site with W2k3/IIS6? this may seem silly, but it almost sounds like there is a comment that is improperly opened/closed. this happened to us recently and nearly drove us crazy. what do you get when you look at the source? On Jan 15, 2008 7:01 PM, Jim McAtee [EMAIL PROTECTED] wrote: I have a web site that is to be accessible only to Windows domain members. I'm moving it from a W2k/IIS5/CF5 server to a W2k3/IIS6/CF8 server in a new domain. With W2k/IIS5 this seemed relatively straightforward. Just give the root folder of the private web site the same permissions as a public web site, then add IUSR_MACHINENAME to the ACL with Deny for all permissions. On the new server that same strategy gives fairly strange results - it looks like the user authenticates OK, but I get no page output. If CF debugging is enabled for the IP address, I see no page output, but the CF debugging output is shown and lists execution times for all the CF templates for the page generation. Oddly enough, I get the same behavior in IIS6 if I use IIS's integrated directory security instead of Windows folder ACLs. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;160198600;22374440;w Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:296642 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
