Deny Account FTP Access
- From: "Peter Shaw" <peter-at-websitedevelopment.ltd.uk>
- Date: Wed, 24 Aug 2005 10:44:00 +0100
W2003 Web Edition / IIS6 / Default FTP site / Guest account disabled
I have had to add another user account to the server to secure access for
certain web pages. The new user is not a member of any group and only has
read pemissions on a single directory well under the ftproot.
Suprisingly, although the new user has no effective permissions at the
ftproot level, they are still able to login and browse the full FTP
directory stucture using their username and password. Anonyomous access is
turned off. I can explicitly deny the new user access to the FTP root which
then prevents FTP logon, but surely this isn't the correct way to do this?
With no permissions at the ftproot level users shouldn't be able to logon.
Which account privileges are they assuming when they logon?
Peter
.
- Follow-Ups:
- Re: Deny Account FTP Access
- From: Bernard Cheah [MVP]
- Re: Deny Account FTP Access
- Prev by Date: Re: modify database of FTP Server through VB.Net
- Next by Date: Re: Custom/Modify Login box
- Previous by thread: Custom/Modify Login box
- Next by thread: Re: Deny Account FTP Access
- Index(es):
Relevant Pages
|
