I have setup FTP publishing for a website. The user is a windows account that belongs to no group (I removed from the Users group). Everything good except the user can access virtual directories (The fact they do or don't show up on the listing is irrelevant) and modify files. I want the user to only see/modify his physical root directory and subdirectories.
Also, I'd like to know why this user can modify files, even thought I haven't given him any permissions on any directories (Directory properties, Security Tab).
