Win server 2003, IIS 6.0 and PHP 5 Security issue.

Hello everyone,

I've been searching like crazy to find the info I need but have found nothing that is helping me.

I recently setup IIS 6.0 on server 2003. Thats fine no problems there. I can view my webpages without a problem.

I tried to setup PHP and i was getting a 404 error before but followed a few tutorials, Im still not sure if PHP works now becuase everytime i try to access a PHP file or DIR with PHP files in them I cant get to it becuase i get the windows authentication box asking me for a user name and PW.

I set the permissions to allow read and execute on the DIR and on IIS for the entire DIR just to see if it would work and it doesnt! I have no idea what to do. I can view all my other DIRS and webpages without any problems. I did allow everything in the management console and I added the .php extension as well. All my webpages work perfectly just the DIR's with PHP or PHP files themselves give me the problems.

Also. In the ISAPI filters when i added the php5isapi.dll and set the filter to "PHP" It shows me a red arrow pointing down and for priority it says *unknown*

One last bit of info. In my event viewer under application i get these two errors.

"Could not load all ISAPI filters for site/service. Therefore startup aborted."

and

"The HTTP Filter DLL K:\php\php5isapi.dll failed to load. The data is the error."

my OS is installed on drive k:\ which is my default as well.

If anyone can walk me through this or help me out i would reallly appreciate it!

Thanks in advanced I know its alot but whatever little you can help me with it would be great.

One possibility is that the IIS user account doesn't have sufficient permissions to the php files & folders, wherever you installed them. Normally IIS uses the IUSR_computername account, make sure that user can get to all the php files and directories.

Try using the CGI service for now instead of the ISAPI filter. So in the IIS manager go to the ISAPI Filters tab and remove the php one. Then go to the Home Directory tab and click the Configuration button. Then create (or edit) the PHP application extension mapping, so that you have the .php extension and your executable is C:\PHP\php-cgi.exe (or wherever you installed PHP to). Then make sure the IUSR_computername account has read permissions on the C:\PHP folder and you should be fine.

[edit]
Doug's post wasn't there when I responded

I guess you guys were right. I just had to change the permissions on the folder. I can't believe I didnt see that.
Thanks.

I have one more questions.

I created a form using frontpage. I have server extensions installed. How would I go about setting up the form properties and server extensions. I just want the data to be saved in a file. Is there a tutorial I can follow?

Thanks again.

You can actually forget this, I reinstalled PHP 4.3 and then i used a PHP Form handler to take care of the form processing and it works great. Thanks!