在 NT AUTHORITYNETWORK SERVICE 下运行池是否安全? [英] Is it safe to run a pool under NT AUTHORITYNETWORK SERVICE?

问题描述

我通常会创建一个受限权限用户并在其下运行该进程，但 2008 年在 IIS7 下自动创建的池使用此帐户这一事实让我认为这是非常安全的，而且可能比我创建的更安全?来自 Redmond 的整个 Secure By Default 推动让我相信情况就是如此.

I normally would create a limited rights user and run the process under that but the fact that pools automatically created under IIS7 in 2008 use this account makes me think that this is perfectly safe, and possibly more so than something I create? The whole Secure By Default push from Redmond would lead me to believe this is the case.

推荐答案

是的，它是安全的.服务和服务帐户安全规划指南

还有一件事.最好使用本地服务帐户(不要与本地系统帐户混淆！).它在本地服务器上与网络服务具有相同的权限.但没有网络权限.网络服务可以通过计算机账户的权限(如认证用户)访问网络资源.

One more thing. It is even better to use the local service account ( not to confuse with local System account! ). It has the same permission on the local server as network service. But does not have network permissions. The network service can access network resources with the permissions of the computer account ( like authenticated user ).

更新 1(回复评论):

据我所知.这两个选项都可以.您的应用程序代码未在应用程序池标识下运行(默认情况下).但是在对您的站点进行身份验证的用户的身份下.或者，如果允许匿名用户，则为 iuser_computername 帐户.应用程序池标识之所以重要，是因为您可以通过代码，因此注入代码的攻击者也可以将您的应用程序标识更改为应用程序池标识.

As far as I understand. both option will work. Your application code is not running ( by default) under the application pool identity. But under the identity of the user that authenticate to your site. Or, if anonymous user are allowed, the iuser_computername account. The reason that the application pool identity is important, is that you can by code, so attacker that inject his code can too, to change the identity of your application to the application pool identity.

也就是说，还有更多的复杂情况无法发布.

That said, There are further complication that are too numerous to post.

这篇关于在 NT AUTHORITYNETWORK SERVICE 下运行池是否安全?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！