Security Issue ASP.NET-IIS

R

Reza Alirezaei

Is it possible to define an account in <Identity> in web.config which
dosen't exist in

domain???

The following line is in somebody's ASP.Net application:
I was viewing somebody's application I found the following line in his
web.config
<identity impersonate="true" userName="DOMAIN_NAME\ASP_NET_TESTER"
password="TEST"/>

but problem is that I didn't find user ASP_NET_TESTER on the domain and
application is working fine.
By the way ,,he has enabeld annonymous access to his web application using a
completely diferent account called "IUSR_DEV"


thanks for your help.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Confusion in ASP.NET security 1
asp.net sqlmembershipprovider integrated security 1
WCF Security Issue 1
IIS/ASP.NET impersonation probelm 3
security issue on error page with ASP code 1
Security issue on Windows7 1
ASP.NET and COM interop/security issue.. ('NullReferenceException') 1
IIS Management and ASP.Net Impersonation 5

Members online

No members online now.
Total: 32 (members: 0, guests: 32)
Robots: 460

Forum statistics

Threads
473,769
Messages
2,569,580
Members
45,055
Latest member
SlimSparkKetoACVReview

Latest Threads

Top