IIS Permissions.

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Locked
Shatan
Joomla! Apprentice
Joomla! Apprentice
Posts: 9
Joined: Sun Jan 08, 2006 6:07 pm

IIS Permissions.

Post by Shatan » Sat Mar 01, 2008 2:32 am

I don't know if this belongs here, but it seems so.

For 1.5, is there any special directories I shpuld watch out for. I found this topic on directory permissions for the IUSR_Name account:

http://forum.joomla.org/viewtopic.php?t=52721

But that' seems to be the only one. Any clarification would be appreciated.

User avatar
RussW
Joomla! Exemplar
Joomla! Exemplar
Posts: 9352
Joined: Sun Oct 22, 2006 4:42 am
Location: Sunshine Coast, Queensland, Australia
Contact:

Re: IIS Permissions.

Post by RussW » Sat Mar 01, 2008 4:11 am

Please re-read ALL posts in that thread, it is very clearly described by RobInk in the third post.
OK, now to change some permissions, this is very important that you do this before you proceed any further.

Right click each of the following directories, select security and make the sure that the “Internet Guest Account” (usually IUSR_computer_name) has the following permissions.

Modify
Read and Execute
List Folder Contents
Read
Write

i.e. everything EXCEPT full control. Do this for these directories and files.

images
media
uploadfiles
components
language
modules
templates
administrator/backups
administrator/components
configuration.php
Joomla! on the fabulous Sunshine Coast...
hotmango, web & print http://www.hotmango.me/
The Styleguyz https://www.thestyleguyz.com/


Locked

Return to “Security in Joomla! 1.5”