<?xml version="1.0"?>
<configuration>
  <system.web>
    <pages enableSessionState="true" />
    <authorization>
      <deny users="?" />
    </authorization>
  </system.web>
</configuration>