C
chuckdfoster
I am developing an ASP.NET site where an site administrator can upload files
via ASP.NET into a Documents folder. These documents are then viewed by
site users. I used the MS KB article
http://support.microsoft.com/default.aspx?scid=kb;en-us;323245 to learn how
to do this.
Is there a security issue with this. If you are giving the ASPNET account
Read & Execute, List Folder Contents, Read, and Write permissions, then
could they not upload a script and then surf to the location of that script
to execute it?
Thanks for your knowledge in advance
via ASP.NET into a Documents folder. These documents are then viewed by
site users. I used the MS KB article
http://support.microsoft.com/default.aspx?scid=kb;en-us;323245 to learn how
to do this.
Is there a security issue with this. If you are giving the ASPNET account
Read & Execute, List Folder Contents, Read, and Write permissions, then
could they not upload a script and then surf to the location of that script
to execute it?
Thanks for your knowledge in advance