Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: IIS Security

from [Wayne S Anderson] Network Security [Permanent Link]
Subject: RE: IIS Security
Date: Mon, 30 Oct 2006 11:00:24 -0800 
The IUSR_MachineName context is the anonymous context under which load 
processes run within windows.  As a comparison, let them know that they are 
essentially creating an environment where a guest account is being given 
administrative privileges and then exposed to the world.

In such a context, you can somewhat mitigate some of the risk by using 
application level firewall, alocal URI preprocessor, and being VERY careful 
that you put proper [lack of] privileges in place on the overall filesystem, 
except for specific resources which are allowed.  Your IIS configuration and 
hardening also becomes key.  Stringent monitoring will need to be in place.

Obviously, if they move forward with this configuration, make sure that 
network access control has been configured appropriately so that any 
compromise of this machine is mitigated in terms of affecting any other 
resource in the enterprise.

Realistically, they need to understand that they might as well just hand out 
administrative access to that machine or just make the IIS site run under 
administrator in the first place as there seems VERY little reason to make the 
privilege separation if you are then going to thwart it by granting the 
subordinated account administrative privilege.

Wayne S. Anderson

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On 
Behalf Of alex2@alexackley.com
Sent: Friday, October 27, 2006 8:54 AM
To: focus-ms@securityfocus.com
Subject: IIS Security

We've a vertical package that includes a web based portal.  (quite common for 
many Enterprise packages)

The problem lies in some of the requirements that the company puts on running 
this portal.

The major one is that of adding the IUSR_machinename account to the local 
admin group.
I know this is horrible, but need specific reasons why this shouldn't be done 
so that I can bring it to my boss and get it fixed.

Thanks

---------------------------------------------------------------------------
---------------------------------------------------------------------------

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: IIS Security, Devin Ganger
Next by Date:  SecurityFocus Microsoft Newsletter #315, mfossi
Previous by Thread:  Re: IIS Security, k levinson
Next by Thread:  SecurityFocus Microsoft Newsletter #315, mfossi
Indexes:  [Date] [Thread] [Top] [All Lists]