Jimmy Chan Posted October 18, 2005 Posted October 18, 2005 Hi all,I setup a Windows Server 2003 IIS and FTP. But for the security reason, I partition the HDD to two partition, one 15GB (C:) for the OS and the other 15G (D:) for the WWW and FTP usage .... but I am feeling my security setting for the IIS integration with FTP maybe wrong ...After installed the OS, I check the D:, discovered the root of D: permission is same as C:Here are the screen capture of my root of D: permissionhttp://test.wusogorphoto.net/kei/server/001.jpgNow Let me tell you what I do for integration the IIS and FTP after the default installed OS .1. I build a user called "abcd" and give him a password2. Later, I following the microsoft document to build up a isolate FTP3. I make a "virtualhost" directory under root of D:4. under "virtualhost" I build a LocalUser directory5. LAter I build a "abcd" under LocalUser6. Later build up INetPub under "abcd" (for security reason of the Access Database, I want to the user's root FTP folder is in D:\virtualhost\LocalUser\abcd\, and the IIS will point to D:\virtualhost\LocalUser\abcd\INetPub\wwwroot , so other Internet can't download the access mdb file, since they don't know the root of the FTP directory is not same as the IIS one)7. Build "wwwroot" under "INetPub"http://test.wusogorphoto.net/kei/server/002.jpg8. I change the FTP's default directory from "C:\inetpub\ftproot" to "D:\virtualhost"9. I add a new web site in IIS, and point it to "D:\virtualhost\LocalUser\abcd\INetPub\wwwroot"10. I change the FTP's "Directory listing style" under "Home Directory" from "MS-DOS" to "UNIX"Later, I open FileZilla FTP client, and upload the file to the FTP, it work ok and can del, make new files ... but I take care of the right side of my FTP client, it show me RWXRWXRWX onthe files ....http://test.wusogorphoto.net/kei/server/003.jpghttp://test.wusogorphoto.net/kei/server/004.jpgBut, I have make a php forum using simplemachine.org to upload the attachment by the froum, and go to the FTP client to see the files, it is R-XR-XR-X (P.S. I have add a write permission to the ISUR_MACHINE_NAME for the forum, else it can't write anything to the attachment directory), the permission is not same with the abcd account one .... why, do it will be a security hole of my web site?? Here are the screen capturehttp://test.wusogorphoto.net/kei/server/005.jpgCan anyone that can tell me my integration setting with the IIS and FTP is right or have something wrong?
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now