Web.Config at IIS Root

C

Chad

We want to share common parameters across multiple web apps using a shared
web.config at the IIS root level.

Out Sys Admin objects to thhis for security reasons.

What is the best practice? Is there an increeased risk here? If so, why?
 
J

Juan T. Llibre

re:
!> Is there an increased risk here? If so, why?

None.
If there's risk in one app, there'd be risk for all apps...but there isn't one.

However, I would set machine-wide settings in machine.config
....not in a web.config in the IIS root.





Chad said:
We want to share common parameters across multiple web apps using a shared web.config at the IIS
root level.
Click to expand...
 
S

Samuel R. Neff

It's unlikely you'd have security issues (but it's possible depending
on what you declare in the web.config). It is possible you can end up
with problelms where some apps don't really want to share the same
things. This is particularly true if you have apps on the same server
running different versions of asp.net.

hth,

Sam
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Help with Web.config 1
Web.config not recognized in root directory 1
HttpModule, virtual directories and web.config 3
Asp.net Important Topics. 0
Wierd error when building WDP - Data at the root level is invalid (web.config) 2
Can't use forms authentication when using IIS 5
Web Service call times out under IIS 5.1 1

Members online

Total: 35 (members: 1, guests: 34)
Robots: 659

Forum statistics

Threads
473,769
Messages
2,569,582
Members
45,057
Latest member
KetoBeezACVGummies

Latest Threads

Top