RE: Virtual Directories
From: Kyle Terns [MSFT] (Kylet_at_online.microsoft.com)
Date: 06/24/04
- Next message: Graham Green: "Netscape 4 on IIS6"
- Previous message: Steve Grosz: "Having IIS send more recent pages"
- In reply to: Scott: "Virtual Directories"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 24 Jun 2004 23:20:29 GMT
Hi Scott,
The only security issue I can think of is if you had content in that
physical folder that you only want access to using Integrated
authentication (for example) and one of your Virtual Directories is setup
to use Anonymous, someone could potentially access that file using
Anonymous. If you are using the same authentication methods for all the
Virtual Directories and/or you set the file level permissions
appropriately, then it wouldn't be an issue.
As for SSL, the certificate is installed at the site level so any Virtual
Directories under that level can be SSL encrypted using the same
certificate.
Hope this helps!
Kyle Terns, MCSD [MSFT]
***********************
>>Please do not send email directly to this alias. This is an online
account name for newsgroup participation only.<<
This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.
© 2003 Microsoft Corporation. All rights reserved.
***********************
--------------------
| From: scottm@avalamarketing.com (Scott)
| Newsgroups: microsoft.public.inetserver.iis
| Subject: Virtual Directories
| Date: 23 Jun 2004 08:22:48 -0700
| Organization: http://groups.google.com
| Lines: 14
| Message-ID: <3b39ce2a.0406230722.7c5a249c@posting.google.com>
| NNTP-Posting-Host: 65.16.81.30
| Content-Type: text/plain; charset=ISO-8859-1
| Content-Transfer-Encoding: 8bit
| X-Trace: posting.google.com 1088004172 4602 127.0.0.1 (23 Jun 2004
15:22:52 GMT)
| X-Complaints-To: groups-abuse@google.com
| NNTP-Posting-Date: Wed, 23 Jun 2004 15:22:52 +0000 (UTC)
| Path:
cpmsftngxa10.phx.gbl!TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed00.s
ul.t-online.de!t-online.de!tiscali!newsfeed1.ip.tiscali.net!proxad.net!postn
ews2.google.com!not-for-mail
| Xref: cpmsftngxa10.phx.gbl microsoft.public.inetserver.iis:311100
| X-Tomcat-NG: microsoft.public.inetserver.iis
|
| We are setting up one physical directory to hold the majority of the
| files used in our web application, and then pointing the various urls
| to this directory via virtual directories. This allows one directory
| to serve multiple urls, hence maintenance is much more streamline.
|
| I have a couple questions regarding this technique:
|
| 1.) Do you know of any holes, security or otherwise, this method
| exposes?
|
| 2.) Can we use one SSL certificate to cover the directory and all the
| urls that point to it?
|
| Your help is much appreciated.
|
- Next message: Graham Green: "Netscape 4 on IIS6"
- Previous message: Steve Grosz: "Having IIS send more recent pages"
- In reply to: Scott: "Virtual Directories"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
