I have a webserver with web sites on one drive and the OS on another drive (same machine). iUser is on only the websites & minimal users on the os drive. ie admin system only whats needed to run the OS.

Our network guys dont want to hook the webserver from the DMZ to an internal machine because there is a hidden directory where I let iUser & iWam read,write & delete files.

Question is how do you write a txt file to the webserver Without giving iUser write permissions. Its one folder that does not have inherent permissions & I immediately delete the file after writing to the db. Are these guys being a bunch of jug heads or am I missing something?

Why is everyone in crisis about giving iUser write permissions these days and what is the work around from a security stand point?

I have been asked to write the file to Memory instead of the HD as a work around... It would seem to me writing to Memory is more of a hole that putting it on the HD & picking it up. At least the antivirus will see it on the HD.

Any feedback links MS info would have me forever in your debt.

Thanks