From owner-freebsd-questions Wed Dec 15 12:59:57 1999 Delivered-To: freebsd-questions@freebsd.org Received: from akira.lanfear.com (akira.lanfear.com [208.12.10.34]) by hub.freebsd.org (Postfix) with ESMTP id 737EC153FF for ; Wed, 15 Dec 1999 12:59:18 -0800 (PST) (envelope-from marcw@lanfear.com) Received: from SHURIKEN (shuriken.lanfear.com [208.12.10.35]) by akira.lanfear.com (8.9.3/8.9.3) with SMTP id MAA41614; Wed, 15 Dec 1999 12:59:09 -0800 (PST) (envelope-from marcw@lanfear.com) Reply-To: From: "Marc Wandschneider" To: , Subject: RE: FrontPage 2000 Security Problem Date: Wed, 15 Dec 1999 12:59:08 -0800 Message-ID: <001501bf473f$3b64b270$230a0cd0@SHURIKEN> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.5600 In-Reply-To: <51F9B228ED26D311A17700A0C9982664010AAE@tetboss.tetronsoftware.com> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I also found the same problem can exist if you don't have AllowOverride All for the appropriate directories. I moved a lot of directories around, and had to add in a few pairs with this for them. marc. > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Gene Harris > Sent: Wednesday, December 15, 1999 10:45 AM > To: freebsd-questions@FreeBSD.ORG > Subject: FW: FrontPage 2000 Security Problem > > > I assume you have gone through many of the "standard" security issues. > (if not, visit http://freebsd.lanfear.com/howtos/frontpage.html) > > One issue that is not discussed: > > If you create a new virtual web, AND you make yourself the > administrator, AND you give the fpsrvadm.exe program the same password > that you use on your Win32 machine, THEN fp will automatically log you > on using your Win32 log in and password. > > To test if this is the problem, open the fp virtual web and then click > on tools -> security. Change your FrontPage password or remove > yourself from the permissions list, exit fp, restart fp and you will > probably need to enter a password. You can also have someone on a > different machine/different log in name open the web using fp. > Chances are, they'll have to use a password. > > I hope this helps. > > Gene > > > -----Original Message----- > > From: owner-freebsd-isp@FreeBSD.ORG > > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Paul > > Stewart (Premier > > Networks) > > Sent: Wednesday, December 15, 1999 8:32 AM > > To: freebsd-isp@FreeBSD.ORG > > Subject: Frontpage 2000 Security Problem > > > > > > Hi there... > > > > We recently upgraded into FP2000 extensions.... everything works > fine > > now except we just added a NEW site and the password is never > required > > to access the site.... > > > > I've checked sites that were present before and *most* of them use > > passwords fine... the odd one falls into the same category... > > > > I'm thinking of reinstalling the extensions but don't want to make > > matters worse... any help is much appreciated...:) > > > > BTW, when I'm connected via the FP2000 client it shows the > > username etc. > > just don't know where it gets it from... > > > > Thanks, > > > > Paul > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message