Previous Section Table of Contents Next Section

Chapter 23. Web Page Security Overview

IN THIS CHAPTER

IIS' built-in security model can make administrative Web pages a bit more difficult to write. I'll explain how IIS handles security, and how your scripts and Web servers need to be configured in order to enable scripting functionality.

Administrative Web pages must comply with IIS' security features. Those features differ a bit from version to version; in this chapter, I'm assuming that you're using Internet Information Server (IIS) 4.0 (Windows NT), IIS 5.0 (Windows 2000), IIS 5.1 (Windows XP), or IIS 6.0 (Windows Server 2003). IIS 6.0 differs the most from a security standpoint, so I'll spend extra time discussing those differences.

Bear in mind that IIS' entire security makeup is designed to prevent you from doing what administrative Web pages do, particularly working with ADSI and WMI. That's OK, though, because it's configurable, and I'll show you how to make it work.

    Previous Section Table of Contents Next Section