I have a client who wants to secure his own directories wich have been made within plesk. when the directoriy is created and the user has been given rights all looks to work well. If i log in true serverip/directory the application prompts a password field, if i request the directory through a dns request, like www.nuttydirectory.com/upload the plesk application lets the request go by without asking for a password! if i disable anonymous acces to the website within IIS itself the directory cant be read. every attempt to fill in a password is denied. Is this a hidden feature or a bug or have i made an error? The site in question had https enabled and runs on plesk 7.0.2 for windows. plz help.