"M. Simioni" <m.simioniREMOVET***@REMOVETHISwooow.it> wrote in message
news:Mvx7e.1675$TR5.450@news.edisontel.com...
> Hi, i'm new to Windows 2000 server administration.
>
> I just got a Windows 2000 server machine that acts as a webserver.
> I saw that the ACL is very dirty: the ASPNET, FTP and IUSR_ accounts have
> full control in too much directory.
>
> Well, i was looking for a good tutorial on how to clean the acl and give
> only the file/directory permissions that are strictly needed by IIS and
> ASPNET.
>
> The server has Windows 2000 Server SP4, MS SQL Server 2000 and IIS 5.0
with
> ASP.NET sites installed on it.
>
> I was wandering if deleting all the account accesses to directories, and
> leaving only Administrator access + those accesses needed by IIS&ASPNET is
a
> good idea.
> No one uses that computer, it's only a webserver with few sites on it but
i
> would like to harden it.