View previous topic :: View next topic |
Author |
Message |
Jammer
Joined: 01 Oct 2017 Posts: 16
|
Posted: Sat Mar 10, 2018 4:40 pm Post subject: Deployed Authentication Server Directory/File Permissions |
|
|
Hi,
Just wondering if there are any established standards for the various folders for an ideal security setup?
At the moment I've set the Authentication service up with 777 on everything except the App_Data directory which is 771.
Would be good to know if there is any specific recommendations on this one.
Thanks, |
|
Back to top |
|
|
Infralution
Joined: 28 Feb 2005 Posts: 5027
|
Posted: Wed Mar 14, 2018 10:32 am Post subject: |
|
|
The help has some suggestions. Basically the Logs and App_Data directory need to have read/write permissions for users of the Web Service application. Other directories can be readonly. This would be best practice as it would minimise the possibility that that someone somehow is able to use a security flaw in the webservice application to overwrite the web service executables to do something malicious _________________ Infralution Support |
|
Back to top |
|
|
Jammer
Joined: 01 Oct 2017 Posts: 16
|
Posted: Thu Mar 15, 2018 5:28 pm Post subject: |
|
|
Great, will take a look. |
|
Back to top |
|
|
|