Safely access file from a Web server

Hot Topic

Advantages of OOP ?
Security for web application
Deleting Hotmail Contacts
Windows Installer
how to install several programs in farm
How to use logging to Message Queuing XP feature of Enterprise Library Application Block 2.0 in C#
Is their worflow engine which generates .net code at compile time
SOA message design
Business Rules & Recommended Tools
Limit processor frequency in windows

Architecture

A good second book about architecture
N-tier layer separations and connection/interaction
UML/XMI Compatibilities : Highly Important
Software architecture... I'm stuck!
Datasets as the DAL?
Snmp OID for number of terminals
Design Patterns
Business Layer Architecture
Have you tried NHibernate?
O/R mapper requirements for domain layer

Safely access file from a Web server

Hello,

I work on a project where clients access to a database and a files storage system (NTFS). On a LAN, all works fine but we would like to allow user to access those data from Internet.

My question is: how our Web server can safely access to the file storage

Is it acceptable to access directly to the files Must we develop a kind of application server In this case, which kind of technology could be used

Lastly, if my web server is running on Linux what are our options

Thanks,

Sebastien

Answer this question

Safely access file from a Web server

  • chrisc313

    Thanks for your very appropriate answer,

    Could you say me which kind of technologie should I use to build up the application server to serve files unto the web server

    Seb

  • brbrb

  • PeterGwaam

    What is your network architecture

    It is usually recommended to partition your network into several zones (segments) where the Web server is on the DMZ or perimeter network (the zone that is exposed to the outside world) and the business data is an internal zone. When you use a firewall where you (usually) only open port 80 between the zones, you would have to set up some application server to serve the files unto the web server.

    In any event I suggest you consult with a security expert (which should perform a threat analysis on your situation and setup) before you jump into any solution

    HTH,

    Arnon



  • David Jaco

    I don't see any reason you couldn't continue to use your files and leverage the NTFS permissions you've already applied. If you setup your ASP.NET application to use windows integrated security and set impersonation = true in your web.config then you will be able to run using the context of the authenticated windows user.

    The question you have on a Linux server I can not help you on. I will say this though, if you're using a Linux server then you are probably not going to be using NTFS anymore. You'll have to look at something not so platform specific ... my understanding is something like Kerberos would work across platforms. I'm not a security expert so the detail is beyond me ... maybe there's a security forum you can post that question on.



  • Safely access file from a Web server
Answer this question