1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

XF 1.2 IIS Permissions

Discussion in 'Installation, Upgrade, and Import Support' started by nrep, Oct 27, 2013.

  1. nrep

    nrep Well-Known Member

    I've been reading the XF installation documents and it mentions that the "IUSR_xxxx" account needs "Full Control" on the data / internal_data directories to function.

    However, I thought that allowing full control was always a bad idea - as the execute permission isn't required, and could be used as an exploit vector.

    Is it possible to just allow read/write permission for the IUSR account instead? Surely the tighter the ACL, the more secure things could be.
     
  2. AWS

    AWS Well-Known Member

    Is this Windows 2008 or 2012 server?

    If it is 2008 then give Network read and write permissions. If it's 2012 give Network Service read write permissions.
     
    nrep likes this.

Share This Page