CONs: IIS Manager Authentication requires some additional setup, which is documented in the " Configure FTP with IIS 7.0 Manager Authentication". If an account is compromised, the account cannot be used to gain access to the physical server. PROs: Accounts are not real Windows accounts, therefore you significantly decrease your surface area of attack.IIS Manager Authentication - this uses accounts that are created through the IIS Manager.Very easy to sniff on the network, so the possibility of account compromise is high unless you use FTP over SSL. can users physically log in to your network.) Due to the way that the underlying FTP protocol is designed, FTP traffic is CONs: You are creating actual Windows accounts for your users, therefore all of the account security needs to be considered.PROs: Accounts can be in a domain, therefore they are easily reused between servers and are kept in a secure store.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |