Page 274 - StudyBook.pdf
P. 274
258 Chapter 5 • Communication Security: Web Based Services
permissions on directories will vary between Web servers, the permissions them-
selves are largely the same. For example, in IIS,Web sites are managed through the
IIS Microsoft Management Console (MMC), which is found in the Administrative
Tools folder in the Control Panel. Using this snap-in for the MMC, you will be
able to access the sites running on that server, and be able to view the directories
making up a particular site. By right-clicking on a directory of a site and clicking
on Properties in the context menu that appears, a dialog box similar to the one
shown in Figure 5.1 will appear. Configuring the settings on the Directory tab of
this dialog box allows you to set the following permissions:
■ Script source access, which (if the Read and Write permissions are also
set) allows users to view source code.
■ Read, which allows users to read and download files
■ Write, which allows users to upload files and modify files.
■ Directory browsing, which allows users to see a listing of the files and
directories in the directory. If this is enabled, it is possible for a visitor to
the site to navigate through a hypertext listing of your site, view its direc-
tory structure, and see the files within its directories.
■ Log visits, which records visits to the directory in a log file if logging is
enabled for the site.
■ Index this resource, which allows Microsoft Indexing Service to include
the directory in a full-text index of the site.
Another type of permission that can be set on the Directory tab is the execute
permission that determines whether scripts and executables can be executed in a
particular directory. In the Execute Permissions dropdown list, there are three pos-
sible options:
www.syngress.com
