http://objectmix.com/inetserver/286550-user-blank-password-cannot-login.html
> I've set up a Windows 2003 box with IIS 6 and i need to have a user with a
blank password to access the FTP site. For some reason which i can't figure
out, IIS 6 won't allow the user with the blank password to connect, but when
a password is added is does. This is really weird as the user with th blank
password logged in OK on my original W2K with IIS 5 box. Can anyone tell me
how to get this working?
This is by design - read the document at
http://www.microsoft.com/windowsserv...nnovation.mspx
for a list of some of the security innovations that we have made in Windows
Server 2003 - one is that local users with blank passwords may not log on
remotely.
This can be changed by opening up the Local Security Policy, and under Local
Policies -> Security Options, you will find "Accounts: Limit local account
use of blank passwords to console logon only."
Needless to say, it's recommended that you keep the default setting, so that
non-anonymous access to your system is protected either by physical security
or a good password policy. If you have a need for public access to your
system, the "anonymous" FTP pseudo-user is a good method for doing this.
Windows Server 2003 以上 預設不允許 沒有密碼的 "遠端"登入,
這個可以在控制台裏的 Local Security Policy 中改變
Local Security Policy -> Local Policies -> Security Options ->
Accounts: Limit local account use of blank passwords to console logon only
Disabled.
沒有留言:
張貼留言