NNTP Security

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1

By default, any user who can connect to the Network News Transfer Protocol (NNTP) service can view all newsgroups. These users connect anonymously, which means that they do not have to supply a user name or password. The Setup program creates a different Windows user account that is used by all anonymous users.

You can configure security to control who has access to specific newsgroups and who can operate the NNTP service. You can also restrict access on the basis of the client computer IP address. If users connect to the NNTP service over a public network, you can encrypt that connection by using the Secure Sockets Layer (SSL) protocol so that others cannot intercept the articles being sent and received.

Security is based on Windows user accounts and directory permissions. User access to newsgroups is restricted on the basis of user name and password.

This section includes the following information:

• Restricting Access to Newsgroups: Describes how to restrict newsgroup access and set authentication methods.

• Limiting Access by IP Address: Describes how to restrict access to the NNTP service by the IP address of the client computer.

• Restricting Operator Access: Describes how to add and remove NNTP operator privileges.

• Securing Connections with SSL: Describes Secure Sockets Layer (SSL) concepts and how to implement them.