• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

XF 1.2 IIS Permissions

nrep

Well-known member
#1
I've been reading the XF installation documents and it mentions that the "IUSR_xxxx" account needs "Full Control" on the data / internal_data directories to function.

However, I thought that allowing full control was always a bad idea - as the execute permission isn't required, and could be used as an exploit vector.

Is it possible to just allow read/write permission for the IUSR account instead? Surely the tighter the ACL, the more secure things could be.
 

AWS

Well-known member
#2
Is this Windows 2008 or 2012 server?

If it is 2008 then give Network read and write permissions. If it's 2012 give Network Service read write permissions.