F
Fabrice
Hello,
One question about security. I try to secure my web application on IIS6 and
asp.net 1.1
I have differents questions about the element "trust level" in the
config.web to manage process rights.
Is a good idea to manipulate this configuration ?
<system.web>
<trust level="full/hight/medium/low/minimal"
originurl="http://www.website.com/*" />
</system.web>
If I configure my root Web.Config as following,
<system.web>
<trust level="minimal" originurl="http://www.website.com/*" />
</system.web>
All the page of my site will be execute with minimals rights (process) ?
This is right ?
And if i need to increase the rights can i create an another web.config in a
subdirectory with this configuration ?
<system.web>
<trust level="full" originurl=http://www.website.com/subdirectory/* />
</system.web>
Thanks for your help.
fabrice
One question about security. I try to secure my web application on IIS6 and
asp.net 1.1
I have differents questions about the element "trust level" in the
config.web to manage process rights.
Is a good idea to manipulate this configuration ?
<system.web>
<trust level="full/hight/medium/low/minimal"
originurl="http://www.website.com/*" />
</system.web>
If I configure my root Web.Config as following,
<system.web>
<trust level="minimal" originurl="http://www.website.com/*" />
</system.web>
All the page of my site will be execute with minimals rights (process) ?
This is right ?
And if i need to increase the rights can i create an another web.config in a
subdirectory with this configuration ?
<system.web>
<trust level="full" originurl=http://www.website.com/subdirectory/* />
</system.web>
Thanks for your help.
fabrice