Proper NTFS permissions on a .UDL file

Web Programming193
I'm trying to lock down the connection strings on our web servers and

opted to go with .UDL files because they will be accessible from both

Classic ASP and ASP.NET pages. They will also be stored outside of the

webroot which should make them easier to restrict permissions in this

environment and are still easy for appropriate people to change.



The problem I'm having is that unless the individual user (or user

group) has read access to the file the page can not read it to access

the connection string.



Ideally I'd like to have IIS allow anonymous access and then grant the

IUSR_machinename user permissions to the .UDL files. This should

prevent individual users from being able to browse and read the files

yet still allow the system to use them. Unfortunately I have been

unable to make this work.



IIS6

Windows Server 2003

Classic ASP/ASP.NET



IUSR_machinename has read&execute to the files

IUSR_machinename is set as the account for anonymous access and the

enable anonymous box is checked in

Integrated Windows Authentication is checked in as well



This is the error:

----------------

Provider error '80030005'



Access Denied.

----------------



When I grant the users group or everyone group permissions the file

will come up just fine.



Any help would be greatly appreciated.


-