Re: ASP and IIS6
From: Mike (anonymous_at_discussions.microsoft.com)
Date: 04/23/04
- Next message: Bojidar Alexandrov: "Re: Mini search engine (call center)..."
- Previous message: Chris: "dynamic multiple select list not selecting properly"
- In reply to: Armando: "Re: ASP and IIS6"
- Next in thread: Armando: "Re: ASP and IIS6"
- Reply: Armando: "Re: ASP and IIS6"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 23 Apr 2004 09:44:03 -0700
Thx Armando for ur answer.
I was reading the article. I can't still believe what I
saw, if what I saw is what I understood it is.
Would that be the WAY to ALLOW the IIS6.0 to show WebSites
with ANONYMOUS access???
This article is not telling how to resolve a "bug" where
the metabase lost sync of the IUSR pwd. It is telling how
to allow IIS to control the anonymous pwd so it hasn't to
be given when impersonated internet users want to access
a site with anonymous access.
I'm not at the office atm, so I couldn't try it on, but I
will as soon as I get there monday.
Thx again.
Mike.
>-----Original Message-----
>Hi Mike,
>
>I had a similar problem with IIS 5 and there were two
reasons it could have
>happened. First, the default document for the site was
not set properly (ie;
>default.asp). The second is that the IUSR account
password (which is by
>default controlled by IIS) is not synchronized with the
password of the
>actual system user.
>
>Now don't ask me how because I'm not quite sure how it
works like this, but
>apparently the server keeps the password in 2 locations,
one for the system,
>one for IIS and if they get out of synchronization then
you'll get failures
>connecting. Check this MS knowledge base article and see
if anything there
>can help:
>
>http://support.microsoft.com/default.aspx?scid=kb;en-
us;332167&Product=iis60
>
>Cheers.
>
>Armando
>
><anonymous@discussions.microsoft.com> wrote in message
>news:345e01c4292a$01990fb0$a301280a@phx.gbl...
>> I was working to determine why this is happening.
>>
>> I went back several steps in the config. Im now at this
>> stage:
>>
>> I made a new website. IP 192.168.1.2, header
>> www.testsite.com (this box is behind an ADSL router with
>> fixed public IP).
>>
>> I have a desktop conected to another ADSL line, from
>> another ISP. So, if I ping this box from my desktop, I
go
>> throught internet. I made in this desktop a line into
the
>> HOSTS files like "aaa.bbb.ccc.ddd www.testsite.com" for
>> my desktop to resolve that fake domain. If I use the
>> IExplorer, I get an error "PAGE CANT BE DISPLAYED". If
>> I "telnet www.testsite.com 80" and ask a "GET /index.htm
>> HTTP/1.0" it tells me that I am "not authorized so see
the
>> site".
>>
>> I made the website public, it has the "IUSR_BOX" user as
>> anonymous web access, and I gave this user access to the
>> website directory.
>>
>> Well, all this new "lock down" concept of the Server2003
>> could be more secure, but it is certainly a "monkey in
the
>> ranch"! ;-)
>>
>> Was there so many IIS5.0 compromised in the past? I've
ran
>> even WinNT's Option Pack boxes and hadn't any security
>> problem... anyway.
>>
>> Thx in regards, oh btw I'm Mike!
>>
>> >-----Original Message-----
>> >[snip]
>> >
>> >Any of them pages use parent directories? ie, something
>> like
>> >
>> ><!--#Include File="../includes/mypage.asp"-->
>> >
>> >You'll need to also enable parent directories if thats
>> the case.
>> >
>> >Can you not add a few response.writes into the .asp
page
>> and determine at
>> >which stage the page is failing?
>> >
>> >For example - a page sending an email may fail if using
>> CDONTS instead of
>> >CDO...
>> >
>> >Regards
>> >
>> >Rob
>> >
>> >
>> >.
>> >
>
>
>.
>
- Next message: Bojidar Alexandrov: "Re: Mini search engine (call center)..."
- Previous message: Chris: "dynamic multiple select list not selecting properly"
- In reply to: Armando: "Re: ASP and IIS6"
- Next in thread: Armando: "Re: ASP and IIS6"
- Reply: Armando: "Re: ASP and IIS6"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
