Trying to get a read on what others think of this...
We sell a Windows based CRM product and the maker of that product has come out with a Safari based app that allows access to the CRM data via iPhone/iPad. It uses IIS as the webserver and in order to make it operate correctly you have to either change the AppPool identity to a domain user that has full rights to the CRM app's share or change the share permissions to give full rights to the IIS machine account.
I personally don't think this is a great idea from a security perspective. Any thoughts?
-
No Profile PictureRegistered UserDevshed Newbie (0 - 499 posts)
- Join Date
- Mar 2012
- Posts
- 1
- Rep Power
- 0
Giving Full Control to Network Shares
-
No Profile PictureContributing UserDevshed Newbie (0 - 499 posts)
- Join Date
- May 2009
- Posts
- 166
- Rep Power
- 6
Hello,
It depends on your application, but try to limit the users full access rights where is possible. By example if you need to save files/file uploads to some folder, change only that folder write permissions. The other files should have only read/execute permissions.
Regardshttp://www.windowshostingasp.net/ - Free ASP.NET Web hosting resources and information.
March 22nd, 2012, 11:44 AM
Reply With Quote
March 30th, 2012, 04:53 AM
