 |
stew
New User
Sep 28, 2002, 2:31 AM
Post #1 of 2
(2599 views)
Shortcut
|
Security with IIS
|
Can't Post
|
|
I have set up the search engine and have it running on win2k IIS. Seems to work really nicely, however in order to get it running properly I had to give the Iuser_MachineName full control of the files. YIKES. This seems like a huge security risk since it allows any public user to browse the edit and look at the search files.
Is there information on how to keep this secure from hackers?
Regards
stew
|
|
| |
|
Luke
Staff
/ Moderator
Oct 3, 2002, 5:16 PM
Post #2 of 2
(2580 views)
Shortcut
|
Sorry for the delay in getting back to you.
For the search engine to work it needs to be able to Read all your website files and Read/Write files in it's data folders. On windows servers perl typically runs under a user account called ISR_machinename where "machinename" is the name of the server.
Even if this account has Full Control over some files it still doesn't mean any public user can browser or edit any of these files. This only allows perl and other web applications to do this.
So, in summary. Perl (typically running as IUSR_machinename) needs read access to any files you want to search, it also needs read/write access (or full control) to it's data folders. It doesn't need full control over everything, and even if you set it up that way, all it would mean was that web applications or Perl programs on your server could modify those files, not visitors to your website.
I hope this helps. :)
Luke Holzken
Product Development
|
|
| |
| | |
|
