Date: Wed, 15 Dec 1999 12:59:08 -0800 From: "Marc Wandschneider" <marcw@lanfear.com> To: <zeus@tetronsoftware.com>, <freebsd-questions@FreeBSD.ORG> Subject: RE: FrontPage 2000 Security Problem Message-ID: <001501bf473f$3b64b270$230a0cd0@SHURIKEN> In-Reply-To: <51F9B228ED26D311A17700A0C9982664010AAE@tetboss.tetronsoftware.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I also found the same problem can exist if you don't have AllowOverride All for the appropriate directories. I moved a lot of directories around, and had to add in a few <Directory ...></Directory> pairs with this for them. marc. > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Gene Harris > Sent: Wednesday, December 15, 1999 10:45 AM > To: freebsd-questions@FreeBSD.ORG > Subject: FW: FrontPage 2000 Security Problem > > > I assume you have gone through many of the "standard" security issues. > (if not, visit http://freebsd.lanfear.com/howtos/frontpage.html) > > One issue that is not discussed: > > If you create a new virtual web, AND you make yourself the > administrator, AND you give the fpsrvadm.exe program the same password > that you use on your Win32 machine, THEN fp will automatically log you > on using your Win32 log in and password. > > To test if this is the problem, open the fp virtual web and then click > on tools -> security. Change your FrontPage password or remove > yourself from the permissions list, exit fp, restart fp and you will > probably need to enter a password. You can also have someone on a > different machine/different log in name open the web using fp. > Chances are, they'll have to use a password. > > I hope this helps. > > Gene > > > -----Original Message----- > > From: owner-freebsd-isp@FreeBSD.ORG > > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Paul > > Stewart (Premier > > Networks) > > Sent: Wednesday, December 15, 1999 8:32 AM > > To: freebsd-isp@FreeBSD.ORG > > Subject: Frontpage 2000 Security Problem > > > > > > Hi there... > > > > We recently upgraded into FP2000 extensions.... everything works > fine > > now except we just added a NEW site and the password is never > required > > to access the site.... > > > > I've checked sites that were present before and *most* of them use > > passwords fine... the odd one falls into the same category... > > > > I'm thinking of reinstalling the extensions but don't want to make > > matters worse... any help is much appreciated...:) > > > > BTW, when I'm connected via the FP2000 client it shows the > > username etc. > > just don't know where it gets it from... > > > > Thanks, > > > > Paul > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001501bf473f$3b64b270$230a0cd0>