tags:

views:

155

answers:

1
+2  Q: 

HttpAddUrl permissions

I'm trying to run a custom WinHTTP based web-server on Windows Server 2008 machine.

I pass "http://*:22222/" to HttpAddUrl

When I start my executable as Administrator or LocalSystem everything works fine. However if I try to run it as NetworkService to minimize security risks (since there are no legitimate reasons for the app to use admin rights) function fails with "Access Denied" error code.

I wasn't aware of NetworkService having any restrictions on which ports and interfaces it can listen on.

Is there a way to configure permissions in such a way so that I actually can run the app under NetworkService account and connect to it from other internet hosts?

+2  A: 

You must be an administrator to add URLs to the http.sys URL mappings. Network Service does is not a member of the admin group, but the admnistrator's group and the System account are members.

IIS gets around this by having one process, inetinfo.exe, that runs as SYSTEM and sets up the URL mappings for worker processes (w3wp.exe) that run as Network Service.

Hope that clarifies tings.

Michael Howard-MSFT  2010-04-01 04:28:26
The corrollory to this is that you will probably want your installer to add the mapping when the service is installed, or supply a standalone configuration tool that does the same thing.I bumped into this exact problem earlier this week and (after some googling) found this standalone app which created the mapping for me: http://urlreservation.codeplex.com/
Chris J  2010-04-01 10:51:09
This tool was exactly what I needed! I glanced inside source code it looks like those who want to create these mappings from their code should google 'HttpSetServiceConfiguration' function
Ghostrider  2010-04-01 22:32:06

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS