IIS6 security problem

We have a little situation here:
We have two servers - one web server and another fileserver. We need to
expose some files located on the fileserver to users, but the file
server itself is not exposed to the internet. So we created a virtual
directory on our website and mapped it to the required directory on the
fileserver. The problem is, that users car easily browse the virtual
directory and download almost all files.But not all. As far as we have
observed, problems occur only with *.msg files (users get (outlook
messages). NTFS Security rights are all the same for the whose folder
on fileserver, and as far as I understand no matter what authentication
method we use, the account used to access the files on fileserver will
be the one that we have specified when creating virtual directory - so
it's the same for all files.

Does anyone has any idea where the problem is? It is really urgent - my
project manager pushes me to complete this task by the end of the day,
and I have no idea right now what causes such problems.

Re: IIS6 security problem

one more thing. I've just thought that we are getting 404error on the
files that can not be accessed. So maybe it's is not security
configuration?
And one more thing. On IIS5.1 everythings just fine.

Re: IIS6 security problem

check that you have a mime type defined for that extension


"LT_Hassan" wrote in message
news:1147866574.697202.42860@i40g2000cwc.googlegroups.com...
> one more thing. I've just thought that we are getting 404error on the
> files that can not be accessed. So maybe it's is not security
> configuration?
> And one more thing. On IIS5.1 everythings just fine.
>