[英]IIS 7.5 ISAPI Application Pool Security
I'm running an ISAPI dll under IIS 7.5, and wish to use Bill Egge's ISAPI Loader dll so an updated dll can be swapped out without stopping the server. 我正在IIS 7.5下运行ISAPI dll,并希望使用Bill Egge的ISAPI Loader dll,以便可以在不停止服务器的情况下换出更新的dll。
If I set the security on the directory holding the DLL to "everyone" with "full control" then it works as designed (a dll with an *.update extension automatically causes the existing *.run dll to be backed up, and the new dll to be renamed with the *.run extension). 如果我将包含DLL的目录的安全性设置为具有“完全控制”权限的“每个人”,那么它将按设计工作(带有* .update扩展名的dll会自动导致备份现有的* .run dll,而新的dll以* .run扩展名重命名)。
Obviously I do not wish to use the "everyone" account as this blows the security wide open. 显然,我不希望使用“所有人”帐户,因为这会使安全性大打折扣。 So I have removed the permissions for "everyone". 因此,我删除了“所有人”的权限。
My app runs under an application pool - "TestAppPool". 我的应用程序在应用程序池“ TestAppPool”下运行。 I have followed the top rated answer at IIS7 Permissions Overview - ApplicationPoolIdentity and added security for user "IIS AppPool\\TestAppPool" to "full control". 我遵循了IIS7权限概述 -ApplicationPoolIdentity的最高评价,并将用户“ IIS AppPool \\ TestAppPool”的安全性添加到“完全控制”中。 However this does not allow the *.update dll to overwrite the *.run dll. 但是,这不允许* .update dll覆盖* .run dll。
Can anyone point me in the right direction. 谁能指出我正确的方向。
多亏了Rich,答案是为托管isapai dll的目录上的IUSR帐户授予修改权限。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.