> What difference does it make to security if your Web server
> and OS are on the same partition? If you have one NTFS partition
> with everything installed on that drive, it is no less safe than
> having two NTFS partitions with the Web server installed on the
> second and the OS on the primary. In Windows NT, security is
> handled at the file level, not the partition level.
While ACLs are set at the file level, simply placing web content in a
separate partition prevents certain types of attacks, such as this recent
directory traversal exploit:
http://www.cert.org/advisories/CA-2001-11.html
While you can secure your server without using a separate partition, most NT
sysadmins don't adequately secure their servers as it is, so I'd generally
recommend the use of separate partitions for web content.
In addition, I generally find it easier to set ACLs when using separate
partitions. That's just a personal preference, though.
> I would not run any of those [partitioning] tools on a production
> server unless it was absolutely necessary.
Yikes! I'd strongly second that.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
------------------------------------------------------------------------------
To unsubscribe, send a message to [EMAIL PROTECTED] with
'unsubscribe' in the body or visit the list page at www.houseoffusion.com
