Web.Config and the Fusion Cache
From: Jerry Camel (rlrcstr_at_msn.com)
Date: 03/15/04
- Next message: Eric Biggs: "Re: Funny ASP.NET Session behavior"
- Previous message: Chris Jackson: "Re: ASP vs ASP.NET connecting to SQL Server"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 15 Mar 2004 12:07:18 -0500
Couple of questions here...
1) What are the security implications of having the plain text password in
web.config for impersonation? There's a warning in the docs regarding the
Impersonation method of WindowsIdentity that says it can only be used on XP
without compromising security. The web server is Win2K, so I decided to go
with impersonation in the web.config, but it seems a plain text password is
also a security risk.
2) From what I read, when you use a specific account for impersonation, that
account must have read/write permissions to the following folders:
\WINNT\Microsoft.NET\Framework\<version>\Temporary ASP .NET Files
\WINNT\Assembly
I can change the permissions on the first without a problem, but the second
folder (The global assembly cache.) is of a type called "Fusion Cache" and
does not have a security tab on it's properties page. How can you change
the permissions for this folder?
This all comes about because I need to do some AD queries within my web app
and I need an AD accouont to query with. So I've created an account that
I'm using as a "service" account within the app. Is there a better way to
do this? Thanks.
Jerry
- Next message: Eric Biggs: "Re: Funny ASP.NET Session behavior"
- Previous message: Chris Jackson: "Re: ASP vs ASP.NET connecting to SQL Server"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
