Personal Web Pages: Anonymous User Cannot Log in through FTP (226548)



The information in this article applies to:

  • Microsoft Commercial Internet System 2.5

This article was previously published under Q226548

SYMPTOMS

After you configure the FTP portion of Personal Web Pages in MCIS 2.5, the anonymous user cannot log in. Valid accounts can authenticate and access their directories using FTP. Even though Allow anonymous is enabled (checked) and Allow only anonymous is disabled (not checked), the anonymous user cannot log in.

CAUSE

The FTP login behavior for MCIS 2.5 has been modified for security reasons.

A virtual directory with a name of "Public" must be created under the FTP virtual server in question. All anonymous connections to this FTP server will be routed and sanboxed in the public virtual directory and will not be able to [cd ..] up to the FTP root.

RESOLUTION

The public virtual directory should resolve to a directory where you want anonymous logins to go. The public virtual directory should have only read rights checked in the virtual directory properties. The NTFS rights for the directory should include Everyone: Read at a minimum.

If you want to refuse all anonymous connections and have the FTP virtual server serve as a publishing point only for authenticated users, use the following steps:
  1. In the properties for the FTP virtual server, uncheck Allow Anonymous.
  2. Do not create a Public virtual directory.

Modification Type:MajorLast Reviewed:9/30/2003
Keywords:kbpending kbprb KB226548