469,275 Members | 1,871 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,275 developers. It's quick & easy.

FileSystemObject security

Hi expert,

By using FileSystemObject, I want a specific user from the server to write
and delete folders, and not allow the IUSER_<server> to do that. Is it
possible? If yes, how I can do that? thanks

Andrew
Oct 13 '05 #1
3 3070
Not with the FSO. You'd need to use something that can impersonate another
user on the server (or domain) that has permissions. I'd imagine that there
are components for this, but I'm not finding any.

Another option is to authenticate your users when they visit your site and
give them the NTFS permissions.

What is the ultimate goal here and/or the requirement for disallowing IUSR_
to modify directory contents?

Ray at home
"Andrew" <du******@yahoo.com> wrote in message
news:mB*******************@news20.bellglobal.com.. .
Hi expert,

By using FileSystemObject, I want a specific user from the server to write
and delete folders, and not allow the IUSER_<server> to do that. Is it
possible? If yes, how I can do that? thanks

Andrew

Oct 14 '05 #2

"Ray Costanzo [MVP]" <my first name at lane 34 dot commercial> wrote in
message news:uJ*************@TK2MSFTNGP09.phx.gbl...
Not with the FSO. You'd need to use something that can impersonate another
user on the server (or domain) that has permissions. I'd imagine that there are components for this, but I'm not finding any.

Another option is to authenticate your users when they visit your site and
give them the NTFS permissions.

What is the ultimate goal here and/or the requirement for disallowing IUSR_ to modify directory contents?

A security concern. I want the IUSER to access www only, but not other
folders.
thanks, anyway

Ray at home
"Andrew" <du******@yahoo.com> wrote in message
news:mB*******************@news20.bellglobal.com.. .
Hi expert,

By using FileSystemObject, I want a specific user from the server to write and delete folders, and not allow the IUSER_<server> to do that. Is it
possible? If yes, how I can do that? thanks

Andrew


Oct 14 '05 #3
"Andrew" wrote in message
news:mB*******************@news20.bellglobal.com.. .
: By using FileSystemObject, I want a specific user from the server to write
: and delete folders, and not allow the IUSER_<server> to do that. Is it
: possible? If yes, how I can do that? thanks

Yes but it depends on two things:

1. Anonymous access must be turned off on the path where you want
files/folders removed.
2. A different user account must have those privileges for the path and must
first connect to the web server on a restricted path (such as this) to get
the prompt to log on, if using Basic Security or Integrated where the user
is not part of that domain/workgroup, so the prompt will be given.
Integrated Security, in the same workgroup or domain will not prompt if the
user's credentials on the web server match the credentials they are logged
on with.

This scenario is generally restricted to Intranets but doesn't have to be.

--
Roland Hall
/* This information is distributed in the hope that it will be useful, but
without any warranty; without even the implied warranty of merchantability
or fitness for a particular purpose. */
Technet Script Center - http://www.microsoft.com/technet/scriptcenter/
WSH 5.6 Documentation - http://msdn.microsoft.com/downloads/list/webdev.asp
MSDN Library - http://msdn.microsoft.com/library/default.asp
Oct 17 '05 #4

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

6 posts views Thread by Sergio Otoya | last post: by
2 posts views Thread by Jason | last post: by
4 posts views Thread by Tony | last post: by
2 posts views Thread by bteclt | last post: by
1 post views Thread by Sbroeff | last post: by
1 post views Thread by CARIGAR | last post: by
reply views Thread by zhoujie | last post: by
reply views Thread by suresh191 | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.