Security Basics mailing list archives

Re: IIS running with least privs..

From: "McKenzie Family" <themac () bigpond net au>
Date: Tue, 5 Nov 2002 22:10:11 +0800

Guys,

Is it possible to make the IIS application itself run with as little as
possible privs on the windows box itself? Its to my understanding that it
runs with system privs...

Can this be changed some how? Or is it essential?

Regards

Current thread:

Risk of using SS#s (last 4 digits) for authentication Jim Lawton (Nov 04)
- Re: IIS running with least privs.. McKenzie Family (Nov 06)
- Re: Risk of using SS#s (last 4 digits) for authentication Andy Cowan (Nov 06)
- Re: Risk of using SS#s (last 4 digits) for authentication noconflic (Nov 08)
  - Re: Risk of using SS#s (last 4 digits) for authentication Gordon Ewasiuk (Nov 09)
- RE: Risk of using SS#s (last 4 digits) for authentication David Greenstein (Nov 08)
  - RE: Risk of using SS#s (last 4 digits) for authentication Jason Coombs (Nov 09)
  - Re: Risk of using SS#s (last 4 digits) for authentication Jim Clark (Nov 11)
  - Re: Risk of using SS#s (last 4 digits) for authentication Griff Palmer (Nov 11)
    - RE: Risk of using SS#s (last 4 digits) for authentication Jason Coombs (Nov 12)
    - Re: Risk of using SS#s (last 4 digits) for authentication Richard Caley (Nov 12)
- <Possible follow-ups>
- Re: Risk of using SS#s (last 4 digits) for authentication Margles Singleton (Nov 05)