[thelist] IIS Credentials - Security

Ken Kogler ken.kogler at cph.org
Mon Jul 15 11:58:02 CDT 2002


Unless I'm mis-interpreting this, why not just link to the images from the
restricted site over http?

<img src="http://www.mysite.com/public/header.gif">

My guess is that the permission headaches are caused by the file/folder
permissions, which the OS uses when it encounters a link like <img
src="../header.gif">

HTH,

--ken

-----Original Message-----
From: thelist-admin at lists.evolt.org
[mailto:thelist-admin at lists.evolt.org]On Behalf Of Joshua Olson
Sent: Monday, July 15, 2002 11:35 AM
To: thelist at lists.evolt.org
Subject: [thelist] IIS Credentials - Security


Greetings,

I have a portion of a site (Server 2k, IIS 2k) that is restricted to a small
group of authenticated users.  To accomplish the restriction, I removed the
Internet Guest Account from the Security Tab under properties and added the
appropriate User Group.  The portion of the site, however, accesses some of
the same imagery as the front of the site.  The images on the front of the
site, of course, have the two basic User Groups associated -- admin (full
control) and IIS (read).  When accessing the restricted part of the site,
anytime one of the images from the front of the site is displayed to the
browser, a login box pops up for IE 5.0  I assume this is because the
Internet Guest Account is logged in and therefore the images are not
available without authentication.  Am I correct?

Other than changing permissions on the images to include "Authenticated
Users" as having read privileges, what options are available?

TIA,

-joshua



--
For unsubscribe and other options, including
the Tip Harvester and archive of thelist go to:
http://lists.evolt.org Workers of the Web, evolt !




More information about the thelist mailing list