Knowledgebase

Portal Home > Knowledgebase > Articles Database > Plesk IIS WP user & compromised server ?

Plesk IIS WP user & compromised server ?

Posted by mo753, 02-24-2007, 08:18 PM

Hi, My server (using plesk 8.1 on windows 2003 server) has been compromised with some sort of rootkit and I'm investigating vulnerabilities. This server hosts some of my asp.net applications and I have to grant Modify Permission to IIS WP (iwam_plesk) user on Some subfolders (under Httpdocs folder for each domain). Is it a security problem? if yes, how else can I allow asp.net applications to write to, say, an Access db? I really appreciate a quick help on this.

---

Posted by Neko Negde, 05-17-2011, 11:05 AM

after 4 years, i have same question? ))

---

Posted by activelobby4u, 05-17-2011, 01:08 PM

The permissions required to run the asp.net applications is from the ASP.NET user. I remember using this fix for a shared desktop issue with the plesk 8.X versions , which was never required in the further releases of plesk. This is not a security issue , but result of a feature which was later discontinued by plesk with the introduction of dedicated application pools (if my memory is right )

---

Add to Favourites    Print this Article

goodydomains.com (Views: 631)

Need CF and .NET Cheap Reseller (Views: 618)

[Ajax] Time Div Refreshes (Views: 607)

Just testing out (Views: 646)

WebNX (Views: 661)