From owner-freebsd-questions Wed Dec 15 10:44:16 1999 Delivered-To: freebsd-questions@freebsd.org Received: from tetron02.tetronsoftware.com (ftp.tetronsoftware.com [208.236.46.106]) by hub.freebsd.org (Postfix) with ESMTP id 9151915154 for ; Wed, 15 Dec 1999 10:44:12 -0800 (PST) (envelope-from zeus@tetronsoftware.com) Received: from development (development.tetronsoftware.com [10.0.0.3]) by tetron02.tetronsoftware.com (8.9.3/8.9.3) with SMTP id MAA02643 for ; Wed, 15 Dec 1999 12:46:35 -0600 (CST) (envelope-from zeus@tetronsoftware.com) Reply-To: From: "Gene Harris" To: Subject: FW: FrontPage 2000 Security Problem Date: Wed, 15 Dec 1999 12:45:08 -0600 Message-ID: <51F9B228ED26D311A17700A0C9982664010AAE@tetboss.tetronsoftware.com> X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I assume you have gone through many of the "standard" security issues. (if not, visit http://freebsd.lanfear.com/howtos/frontpage.html) One issue that is not discussed: If you create a new virtual web, AND you make yourself the administrator, AND you give the fpsrvadm.exe program the same password that you use on your Win32 machine, THEN fp will automatically log you on using your Win32 log in and password. To test if this is the problem, open the fp virtual web and then click on tools -> security. Change your FrontPage password or remove yourself from the permissions list, exit fp, restart fp and you will probably need to enter a password. You can also have someone on a different machine/different log in name open the web using fp. Chances are, they'll have to use a password. I hope this helps. Gene > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Paul > Stewart (Premier > Networks) > Sent: Wednesday, December 15, 1999 8:32 AM > To: freebsd-isp@FreeBSD.ORG > Subject: Frontpage 2000 Security Problem > > > Hi there... > > We recently upgraded into FP2000 extensions.... everything works fine > now except we just added a NEW site and the password is never required > to access the site.... > > I've checked sites that were present before and *most* of them use > passwords fine... the odd one falls into the same category... > > I'm thinking of reinstalling the extensions but don't want to make > matters worse... any help is much appreciated...:) > > BTW, when I'm connected via the FP2000 client it shows the > username etc. > just don't know where it gets it from... > > Thanks, > > Paul > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message