More on IIS
More on IIS
Because IIS is integrated with OS security, IIS must run within the SYSTEM security context. When IIS receives an HTTP request, that request is run within the security context of the connected user (if a login is required) or as the “anonymous user”, which by default is mapped to the account IUSR_MACHINENAME.
Because IIS logins are mapped to OS logins, Basic Authentication should be avoided if possible, unless used through SSL.
Additional IIS services, such as FTP and SMTP, should not be installed if possible.
The web root directory should be located on a separate partition.
Home
Speakers
Maps & Hotels
Photos
CF Conf Central
Please send comments/questions to
[email protected]