web.config

<?xml version="1.0"?>
<configuration xmlns="http://schemas.microsoft.com/.NetConfiguration/v2.0">
	<location path="Admin">
		<system.web>
			<authorization>
				<allow roles="Administrators"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="PostAd.aspx">
		<system.web>
			<authorization>
				<deny users="?"/>
			</authorization>
		</system.web>
	</location>
  <location path="EditAd.aspx">
    <system.web>
      <authorization>
        <deny users="?"/>
      </authorization>
      <httpRuntime
        executionTimeout="200"
        maxRequestLength="20480"
        requestLengthDiskThreshold="80"
        useFullyQualifiedRedirectUrl="false"
        minFreeThreads="8"
        minLocalRequestFreeThreads="4"
        appRequestQueueLimit="5000"
        enableKernelOutputCache="true"
        enableVersionHeader="true"
        requireRootedSaveAsPath="false"
        enable="true"
        shutdownTimeout="90"
        delayNotificationTimeout="5"
        waitChangeNotification="0"
        maxWaitChangeNotification="0"
        enableHeaderChecking="true"
        sendCacheControlHeader="true"
        apartmentThreading="false"/>
    </system.web>
  </location>
	<location path="EditPhotos.aspx">
		<system.web>
			<authorization>
				<deny users="?"/>
			</authorization>
		</system.web>
	</location>
	<location path="MyAds.aspx">
		<system.web>
			<authorization>
				<deny users="?"/>
			</authorization>
		</system.web>
	</location>
	<location path="MyProfile.aspx">
		<system.web>
			<authorization>
				<deny users="?"/>
			</authorization>
		</system.web>
	</location>
	<system.web>
		<customErrors defaultRedirect="Error.aspx" mode="RemoteOnly"/>
		<pages styleSheetTheme="SCVMC"/>
		<authentication mode="Forms">
			<forms name="FSCookie"/>
		</authentication>
		<membership>
			<providers>
				<clear/>
				<add connectionStringName="LocalSqlServer" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="true" applicationName="/" requiresUniqueEmail="true" passwordFormat="Hashed" maxInvalidPasswordAttempts="5" minRequiredPasswordLength="7" minRequiredNonalphanumericCharacters="1" passwordAttemptWindow="10" passwordStrengthRegularExpression="" name="AspNetSqlMembershipProvider" type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"/>
			</providers>
		</membership>
		<profile enabled="true">
			<properties>
				<add name="FirstName" type="System.String"/>
				<add name="LastName" type="System.String"/>
				<add name="MemberId" defaultValue="0" type="System.Int32"/>
				<group name="Core"/>
			</properties>
		</profile>
		<roleManager enabled="true"/>
		<compilation defaultLanguage="c#" debug="true"/>
		<siteMap defaultProvider="RoleEnabled_AspNetXmlSiteMapProvider" enabled="true">
			<providers>
				<clear/>
				<add name="RoleEnabled_AspNetXmlSiteMapProvider" type="System.Web.XmlSiteMapProvider, System.Web, Version=2.0.3600.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" siteMapFile="web.sitemap" securityTrimmingEnabled="true"/>
			</providers>
		</siteMap>
	</system.web>
	<connectionStrings>
		<add name="classifiedsConnection" connectionString="Data Source=.\SQLEXPRESS;AttachDbFilename=|DataDirectory|\classifiedsdb.mdf;Integrated Security=True;User Instance=True" providerName="System.Data.SqlClient"/>
	</connectionStrings>
	<system.net>
		<mailSettings>
			<smtp from="">
				<network host="labdms" port="25"/>
			</smtp>
		</mailSettings>
	</system.net>
</configuration>