Checking whether Authentication Information is encrypted in SSL or

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ IIS
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - moin.cgi in urls I am using MoiMoin on a Windows Server 2003 with IIS. I have a small but annoying problem the MoiMoin community is not able to help me with. Reason seems to be that most MoinMoin wikis are run under Apache. I got several hints how to solve the problem under Apache which tells me there is a solution there but I need a IIS solution, of course. The solution is, btw, setting scriptalias / "moin.cgi" in the appache environment. In a longer url like http://aplteam2.com/testwiki/moin.cgi/ExampleNumber3 one always see "moin.cgi". I would like to specify this path instead: http://aplteam2.com/testwiki/ExampleNumber3 Because I have made moin.cgi my one and only default page for that website, I would expect that to happen but instead I get a 404. Surely there must be a solution for this problem? Thanks in advance Kai Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392729
  - 2
    - IIS Log File specification Where can I find a document which speficies IIS Extended Log File specfiications. For example I would like to translte the entry for cs(User-Agent) from Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1;+SV1;+InfoPath.1) to for example IE7, Windows XP.... etc Evan Camilleri http://www.holisticrd.com Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392712
  - 3
    - IIS7 Console remote connection Hi group, I'm running Vista Ultimate with the new IIS MMC snapin for IIS7. I can't figure out how to connect to another machine. Even when I use the <right click My Computer--Manage> predefined MMC tempate and choose to manage another machine, the IIS snap-in is still connected to my local machine. Also, if I try to create my own MMC console, when I add the IIS snap-in, I'm not asked what machine this is for the way it used to behave. CAn anyone tell me how to use the new IIS snap-in to connect to another web server? Thank you, Ray at work Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392703
  - 4
    - I am confused about how to FTP into a website I am very new to IIS (using v6) but setting up websites using the host header technique. But what I cannot figure out is how to FTP into a given web site in order to upload files for display. (I figure it must be easy because no one even seems to ask the question.) One thing I figure makes my situation unique is that the Windows server is not being used for anything but serving a few web sites - there are no "users" that are networked from the box. This server is freestanding in a small network of Unix servers. Also, no web developers will be using MS products like FrontPage or ExpressionWeb - some will be using Dreamweaver some just plain FTP clients. So I guess my confusion is, how does one log into their web site for purpose of managing content? Thanks Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392702
  - 5
    - Arghh - >.Net 1.1 Framework on IIS, Hi we have both 1.1 and 2.0 .Net framework on the same IIS server our product only runs on 1.1 at the minute. Does anybody know a way of setting the IIS server to use 1.1 .Net framework as the default instead of it going straight to version 2.0 This issues is driving me round the bend. Thanks Ethan Ethan@ether-ray.co.uk Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392691
  - 6
    - Metabase modification logging Hi, I have the following question: If someone changes the hostheaders within IIS is there a way to see this in any log or event or something else perhaps? I want to monitor this with MOM 2005 but I need something to point to my rule. Thanks in advanced. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392687
  - 7
    - Permissions for IIS virtual directory Hi, I am trying to set up a folder under my "My Documents" folder, called say MyWWWRoot, as a relocated web root directory under IIS 5.1 (Windows XP Pro). Using the IIS management console I created a new Virtual Directory under the Default Web Site node pointing to this folder. I kept the default permissions offered by the wizard. Later I clicked on the Web Sharing tab of the properties sheet of MyWWWRoot folder and clicked the "Share This Folder" radio button. I did not allow other users of the compter to share the folder, only web users. However when I enter in the web browser the URL of a web page under this directory, using "localhost" and the appropriate alias, I get the error message "You are not authorized to view this page". Can anyone help with the following questions: 1. What more needs to be done to allow the folder to be viewed by web users? 2. In the IIS management console, whilst the IISHelp node in the tree view may be expanded to reveal its subdirectories, the tree node representing my virtual directory cannot be expanded to show its sub folders, which can only be seen by clicking Explore in the context menu. Why is this? Many thanks in advance. Regards Enquiring Mind Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392686
  - 8
    - IIS 6, ISAPI, EXE, PIPEs Hello, I have Win Server 2003 running more than 3 years well. There is couple webs, where content update is made by calling foo.exe from ISAPI dll. FOO.EXE unzips new files into web folder. It is working well when started from CMD. By the end of last year I had HDD failure and I had to reinstall server. All is running well now instead of these updates. It seems IIS doesn't permit to run exe file from ISAPI dll. Both dll and exe are allowed in iis extensions. There is no line about it in EvenLog. I think it is not ACL rights case, because situation is the same when I put IUSR... into administrators group. Thank you very much for any recommendation! Miroslav Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392676
  - 9
    - HOW TO back up just one web site? Our IIS 6 are hosting many web sites (like 200) and we need to back up just one of them (we don't want to back up entire metabase). How can we do that? We tried with simple copy of main folder but when we restore it all subfolder/file original permissions were missing. Any help will be appreciated. THKS! Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392673
  - 10
    - Installing Server Certificate with SELFSSL Hello, If I install Self Signed Certificate with SELFSSL.exe, there is only one purpose i.e. "Server Authentication" is displayed in the properties of certificate after installing in IIS 5.1. How can I add more purposes such as "Client Authentication" so that the same certificate with the same "Thumbprint", "issuer", "issued" and "validity" can also be used as a Client Certificate. please help Thank you Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392672
  - 11
    - Server Crashed My web server crashed today and given below is a snippet from the log file 2007-01-11 11:04:46 210.212.210.166 2747 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:04:46 210.212.210.166 2746 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:04:46 210.212.210.166 2748 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:04:47 210.212.210.166 2752 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:04:47 210.212.210.166 2753 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:04:47 210.212.210.166 2754 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:04:47 210.212.210.166 2755 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 BadRequest DefaultAppPool 2007-01-11 11:05:29 210.212.210.166 2251 192.168.168.105 80 - - - - - Timer_ConnectionIdle - 2007-01-11 11:05:29 210.212.210.166 2232 192.168.168.105 80 - - - - - Timer_ConnectionIdle - 2007-01-11 11:05:43 210.212.210.166 2746 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool 2007-01-11 11:05:43 210.212.210.166 2747 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool 2007-01-11 11:05:43 210.212.210.166 2748 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool 2007-01-11 11:05:43 210.212.210.166 2752 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool 2007-01-11 11:05:43 210.212.210.166 2753 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool 2007-01-11 11:05:43 210.212.210.166 2754 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool 2007-01-11 11:05:43 210.212.210.166 2755 192.168.168.105 80 HTTP/1.1 POST /synergy/RGEN/rg.aspx 400 1 Connection_Dropped DefaultAppPool Looking at these entries, it looks like there are quite a few requests from the same IP address in a matter of seconds..Does this mean that page is getting hacked or should I look at something else? Thanks a lot in advance Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392671
  - 12
    - Inconsistent Image Rendering with IIS I have coded a class that uses the bitmap class to generate graphics from True Type fonts. I'm using it primarily to render 3 of 9 barcodes from a True Type font. When the exact same code is used to generate a barcode from some Web servers the barcodes print nice and clean. From other Web servers the barcodes print out very blurry. As a result, the blurry barcodes will not scan. We have eliminated printers and browsers as the culprit and narrowed it down to the Web server. We eliminated browers as the culprit by using the same brower on the same machine to print barcodes served from 2 different instances of IIS. On one site the barcodes always print clean and on the other they always are fuzzy. Since we are always printing to the same printer, that is eliminated as a point of failure. Does anyone know why images rendered using the Bitmap class might render differently from one IIS (v5.1) server to another? Is there a setting somewhere that I don't know about? Here is some additional information: Images Encoded as JPEG with 0% compression On all machines (fuzzy and clean) .NET Framework is V1.1.4322 On all machines (fuzzy and clean) IIS version is V5.1 Thanks, Corey Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392665
  - 13
    - Application Pool Hi all, I,m trying to run a CGI server through Win2003 Server IIS but within the application pool if I don't use the LOCAL SYSTEM in the Identity tab then it doesn't work. I have even tried to add a new user as a Local Administrator and granted some domain restricted polices on the machine. Now my question is, does any body know what level of access or default access right the Local System Account has. Please respond as I need to get this application up as soon as. Thanks in advance. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392662
  - 14
    - SAInstall Hi, recently I am getting this error in event log: Source: SAInstall IIS is not installed. Please install IIS before installing the Web UI for server administration. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. I noticed that after that error appeared in event log, users are experiencing difficulties with connection to service running on server. Server is 2003 Server Web Edition. Thanks in advance Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392656
  - 15
    - Machine.config got corrupt? Hello. Running Win 2003 Server and IIS. We started getting in internal server error (HTTP 500) from IIS. I tracked it down to the machine.config file. When I tried to edit the file through the IIS mmc (Properties/ASP.Net/Edit Configuration button on the bottom) is was presented with an error that alluded to the "byte order mark prefix". Sorry, I don't remember the exact message. To fix this I opened the Machine.config file in notepad and changed the value of the "encoding" property in the preamble from UTF-16 to UTF-8, and everything now works. So my questions are: 1) How did this get corrupt? 2) Is there a problem with having UTF-8 as opposed to UTF-16? 3) What would I need to do to get this back to UTF-16? NOTE: I found out from the operations guys that they did a Windows Update on the server last night. Could that have clobbered it? Thanks in advance, Mike Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392653
  - 16
    - HTTP 400 Hi, Does anyone know for what specific reasons might IIS return a 400 response code to an IE6 browser? In the server log the corresponding Win32 code is 121 (which appears to indicate a timeout), this appears to be borne out by the request taking just over 900s to "fulfil". I see a clutch of half a dozen of these responses occurring to a single user during a half-hour period. No other user of the system during the entire day was affected. The user who *was* affected had no problems outside of this half hour window, despite using the system throughout a period of almost 12 hours on this particular day. The page being loaded was the same each time, and was an asp page that is part of a web application (requires windows authentication). All pages of the web application are stateless and in fact the application is clustered across 3 identical servers running W2K (service packed) and IIS5. I can see this result on two of the three clustered servers. I do not believe anything was particularly "happening" on these servers at this particular time as opposed to any other time of the day. As regards the page itself, if was loaded five times by the user with response code 400, and another 250 times during the day with a 200 response. Across all users, for the day, successful responses were around 2000. The user claims to have restarted their browser a couple of times during the window, it is unlikely that they logged off or rebooted. They are running W2K Pro and I would assume that both browser and o/s are pretty much service-packed up - this is an internal user so their environment is quite tightly controlled. Confused. Any ideas what might have happened? Thanks, Pete Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392651
  - 17
    - Trying to link to another server We have two registered URL's - one to our IIS server/intranet site on port 80 and one to the IIS server/OWA on the Exchange Server on port 81. I want to put a link on the intranet site to the OWA. If the link is to the external URL of the OWA it works fine. But if the link is to the internal IP or to the internal server name, it works fine from inside our network but from the internet, it cannot connect. Please note I'm not trying to redirect here, just create a link. I would appreciate any help Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392648
  - 18
    - privileged operation by non-privileged user using ASP System : IIS 6 on Windows 2003 SP1 I have created few ASP pages which perform some privileged operations if run under privileged account, Now the users who will access these pages don't have that privilege themselves, and I can't give that privilege to them. My requirement is 1. Restrict access to this pages based on user's group membership (I think NTFS permission on ASP pages will help here.) 2. ASP pages themselves run under privileged account so that privileged operation can be done by non-privileged but properly authenticated people. How do I configure IIS to handle this ? -- ~~~~~~~~~~~~~~~~~~~~~~~ "Chance Favors The Prepared Mind" ~~~~~~~~~~~~~~~~~~~~~~~ Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392644
  - 19
    - How to have the URL default to the FQDN I have a Sharepoint Intranet site and I would like the URL to alwayes default to the FQDN. How can I make this happen? Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392641
  - 20
    - matching of Client Certificates with Server Certificates Hello, I wanted to know if the following properties of Server Certificates to be matched with the Server Certificate? 1. Issuer 2. Issued 3. Thumbprint 4 Validity 1. if Private key in the Server Certificate should be associated with the Client Certificate also? 2. If Server Certificate has only single purpose of "Server Authentication" as displayed in its properties, can it be exported to .pfx/p7b format file to be used as a Client Certificate. Please Help Thanks in Advance Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392639
  - 21
    - Recommend the Best Log Analyzer? Hello All, Is there a log analyzer out there that gives you great details.... outside of just listing the top 20 directories and top 20 pages that are hit? Is there a log analyzer that will let you isolate one folder within your IIS .. and tell you all of the activity about that folder? thanks.... Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392633
  - 22
    - IIS 6 | URL Mapping with ISAPI Filter | ASP.NET 2.0 Hello All, We have configured IIS 6 websites using Host Header to have multiple domain names mapped to a single website (to optimize the IIS resource utilization) . However, I want each domain to be pointing to a different folder, something like: website1 |-------Root |-------Domain1 |-------Domain2 |-------Domain3 website2 |-------Root |-------Domain4 .... and so on The webiste1 HomeDirectory points to website1\Root, while I need all Host Header (domain names) to point to their respective Folders. This 'Domain Name to Physical Path' mapping is kept in a text file. We wrote an ISAPI Filter which is registered for IIS Event 'SF_NOTIFY_URL_MAP', and it fetches the information from the text file and accordingly changes the PhysicalPath for the incoming HTTP Requests. This setup is working for all types of file extensions so far including ASP.NET 1.1 Recently we have installed .NET Framework 2.0 and configured all ScriptMaps to use version 2.0 (aspnet_regiis -r), and since then the redirection explained above does NOT work for ASP.NET pages. Any domainName which has ASPX page is looked at in HomeDirectory of the corresponding website, while any other file extension is picked from the configured mapping. Can somebody please explain this behavior? Is it because of 'Faulty Installation/Configuration' of .NET 2.0? Thanks in advance ~TJ Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392632
  - 23
    - how to monitor IIS requests i'm troubleshooting an IIS issue related to client certificates. from what i've read, when 'require a client certificate' is enabled for a site and a client attempts to connect, the first thing IIS does is send a list of CAs it trusts to the client. i'd like to know what's in this list. can anybody recommend a tool to do this? tks. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392622
  - 24
    - Disable redirects to Windows Update I am trying to access a specific webpage and when I enter the address in either IE or Firefox I'm redirected to http://update.microsoft.com/windowsupdate/v6/default.aspx?ln=en-us I've completed the updats, tried disabling the auto updates, cleared cookies, objects and files, rebooted and nothing seems to work. Now I seem to be blocked from getting to the site (it is a site I use in my real estate business) because I always get redirected. If anyone can help I'd appreciate it! Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392621
  - 25
    - IIS 5.1 (XP SP2) can connect via localhost cannot connect via network IP Hello, Configuration: I am running IIS on Windows XP SP2 I have a router connecting to the internet and an additional Macintosh box. The router is set to give static ip addresses to the win box (10.0.0.2) and to the mac box (10.0.0.1). Windows Firewall is turned off completely (even the Service is turned off) Problem: >From the Mac box i cannot connect to IIS on the win box (not using http://10.0.0.2 and not using the static dns name i configured in the router). I CAN connect from my mac box to Shared Folders on my win box, so no connection problem. A port scan from the mac box, doesn't pick up port 80. On my Win box I can connect to my local website using http://localhost or http://127.0.0.1, but cannot connect using the network ip (http:// 10.0.0.2) nor using the dns name. TCPInfo shows that port 80 is indeed inetinfo, and that it is listening (but local only ? : inetinfo.exe:3352 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING) (see dump below) Does 0.0.0.0:80 mean that it listens only to the localhost? If yes how can i change that setting, if no, what could be the problem? TCPInfo dump: Skype.exe:3100 UDP 127.0.0.1:3251 *:* iexplore.exe:4032 UDP 127.0.0.1:1083 *:* devenv.exe:1332 UDP 127.0.0.1:1067 *:* svchost.exe:1096 UDP 127.0.0.1:123 *:* msnmsgr.exe:2936 UDP 10.0.0.2:9438 *:* iexplore.exe:4032 TCP 10.0.0.2:3643 209.85.135.103:443 ESTABLISHED iexplore.exe:4032 TCP 10.0.0.2:3642 209.85.135.103:443 CLOSE_WAIT [System Process]:0 TCP 10.0.0.2:3640 65.54.225.100:443 TIME_WAIT iexplore.exe:4032 TCP 10.0.0.2:3639 72.14.215.104:80 ESTABLISHED iexplore.exe:4032 TCP 10.0.0.2:3637 64.233.179.99:80 ESTABLISHED iexplore.exe:4032 TCP 10.0.0.2:3636 64.233.179.99:80 ESTABLISHED [System Process]:0 TCP 10.0.0.2:3635 209.85.135.103:80 TIME_WAIT Skype.exe:3100 TCP 10.0.0.2:3252 85.166.28.206:57911 ESTABLISHED System:4 TCP 10.0.0.2:139 0.0.0.0:0 LISTENING System:4 UDP 10.0.0.2:138 *:* System:4 UDP 10.0.0.2:137 *:* svchost.exe:1096 UDP 10.0.0.2:123 *:* Skype.exe:3100 TCP 0.0.0.0:34591 0.0.0.0:0 LISTENING Skype.exe:3100 UDP 0.0.0.0:34591 *:* lsass.exe:712 UDP 0.0.0.0:4500 *:* svchost.exe:1144 UDP 0.0.0.0:3492 *:* svchost.exe:1144 UDP 0.0.0.0:3491 *:* svchost.exe:1144 UDP 0.0.0.0:3490 *:* svchost.exe:1144 UDP 0.0.0.0:3489 *:* svchost.exe:1144 UDP 0.0.0.0:3488 *:* svchost.exe:1144 UDP 0.0.0.0:3487 *:* svchost.exe:1144 UDP 0.0.0.0:3486 *:* inetinfo.exe:3352 UDP 0.0.0.0:3456 *:* svchost.exe:900 TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING inetinfo.exe:3352 TCP 0.0.0.0:2857 0.0.0.0:0 LISTENING svchost.exe:1144 UDP 0.0.0.0:1102 *:* svchost.exe:1144 UDP 0.0.0.0:1073 *:* msnmsgr.exe:2936 UDP 0.0.0.0:1040 *:* svchost.exe:1144 UDP 0.0.0.0:1028 *:* lsass.exe:712 UDP 0.0.0.0:500 *:* System:4 TCP 0.0.0.0:445 0.0.0.0:0 LISTENING System:4 UDP 0.0.0.0:445 *:* inetinfo.exe:3352 TCP 0.0.0.0:443 0.0.0.0:0 LISTENING svchost.exe:952 TCP 0.0.0.0:135 0.0.0.0:0 LISTENING inetinfo.exe:3352 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392614
- Next
  - 1
    - ASAPI Hello WHen i try to access a .java file on my webserver i get a 403.1 Access denied error. I have looked at the ASAPI filter and there are none in place. However I did notice that the CACHE ASAPI under the IIS home directory tab has the .java listed. Is this causing the page not to be rendered? What are the possible problems of removing this setting from the cache and allowing the .java files to be renedered? Thank you Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392610
  - 2
    - Write permissions in IIS7 I'll try this again, sorry for continuing topic on new post. I'm not proficient with IIS, let alone IIS7 (new for me in Vista). I used XP and IIS there was simpler to use, so I'm somewhat confused. My website is the default website in Vista/IIS7. I would like to get a directory on my site that will allow PHP5 to write a file to it, and another web app to also write a file to the same directory. The directory will not allow writes to it, no matter if I'm surfing my site at home on my system, or from the web. If anyone could please point me in the right direction on how to set a directory with write permission. With XP's IIS, all you had to do was right-click on the folder and checkmark "write"... and it was as simple as that. In Vista this is not as simple or evident. Thanks in advance. - Francis Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392607
  - 3
    - HTTPS to HTTP I have a web site that is running https, but when I go to the https://myaddress, my browser re-directs me to http://myaddress. Is this an IIS 6.0 issue or a browser issue. The full message is "You are about to leave a secure internet connection. It will be possible for others to view information you send. Do you want to continue? YES or NO" If I click NO nothing happens. If I click YES I am re-directed to http://myaddress and I get the message "The page must be viewed over a secure channel". I don't want to go to http://myaddress, since my site is running on https://myaddress. What is re-directing me? I'm sure its not the code since I have nothing in the code about redirecting. I has to be an IIS 6.0 or IE7.0 setting. Please help. Freddy Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392606
  - 4
    - Windows Server 2003 NLB Health Checks I'm using Windows NLB to cluster IIS servers and is working fine. NLB, however, blindly forwards traffic to port 80 even when IIS is down on one of them. The only way to avoid it handling request is by doing an "wlbs stop" to remove an affected server from the cluster to avoid traffic to an affected box. Is there a way NLB can be used to do health checks before forwarding traffic? Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392605
  - 5
    - IIS6.0: Out of memory We are running classic ASP (3.0) on a Windows 2003 Server and IIS 6.0. A few weeks ago the web application begun to report errors "out of memory" for a few times a day. When this happens the IIS 6.0 is flushing the ASP Template Cache and virtual memory for the w3wp.exe process and is beginning to recompile the ASP pages. This leads to heavy cpu load for some minutes and a slow responding web application. Also there are many script compilation errors at this time. After that the server is running fine for some time, but it will happen again and again. Sometimes the server is doing this every few minutes and we have to reset the IIS. Problem is, that we are running a e-commerce application and restarting the application leads to a loss of all shopping carts and so we are loosing customers. Some more things to mention: - We restart the IIS every morning at 6.00pm automatically. - We allready tried to isolate every ActiveX COM to see if there is a problem with one them, but with no success - We tried to analyze a possible memory leak with debug diagnostics but we are not able to understand the analyzed data and also the server is not responding everytime when debugger is attached caused by heavy cpu load when debugging. The memory dump I successfully created a short time before "out of memory" error occured is about 2 GB in size. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392601
  - 6
    - Vista Ultimate IIS not working Hi, I'm trying to get IIS 7 working on my home PC, new PC Dual Core, 4GB ram, 1GB video. I did an upgrade from XP pro and IIS worked fine. Not I'm not even able to bring up the default page: http://localhost. I get the following error: Server Error in Application "Default Web Site" I tried changing the settings in IIS to allow version 6 compatability but that did not help. I'm developing using VS2005 .NET2 Please help Fick Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392598
  - 7
    - ISAPI and Host Headers Hi, Thanks for your help ahead of time, I'm very new to IIS, and I need help. My situation is this: I have a working library database server with a built-in web server using Polaris. I have two different sites, same IP address, but on different ports, one 80 other 81. I need to use the IIS box on the DMZ to forward requests to both websites on the library server. I'm testing this all on virtual machines, so the networking right now is very simple (same subnet no firewalls) The software came with an ISAPI filter, for use with IIS, which redirects requests to the library server when you use specific URLs. I set up a test with no problem using the default website by using a virtual folder with script permissions for the dll and an ini file. I change the ini file which tells the filter what IP and port to use. I could change the port back and forth, to go to both websites on the other server one at a time after restarting IIS. So then after some reading, I decided that I need to use host headers to do what I want to do. I set up two different websites, identical to each other than name, home directory, and where the ISAPI filter should be forwarding requests. I did a lot of reading on host headers, and I'm pretty sure that I set them up correctly, I even added DNS so that I could be sure that the headers were being passed. As far as the stuff I know from what I read so far, it "should" work. However, I'm having weird issues with the different websites after I set them up. The scripts have a built in page that tells you if the filter is setup correctly, and what port is being forwarded to. After much frustration, I think I at least have a solid symptom: 1. I setup ISAPI on site A, and test the filter, shows that requests are being forwarded to 192.168.99.202 on port 81. 2. I stop site A, setup site B with a different scripts directory and ISAPI filter, test the filter and it shows that requests are being forwarded to 99.202 port 80 3. Then I start site A again and test the filter. It's using 80, the port that site B is supposed to use. The dll and the ini files haven't changed, so what am I missing?\ 4. I then stop B and try A again. It's still using port 80. . . I think at step 4 I've eliminated the possibility that it's host headers causing the problem, right? Is there something else that I need to setup when I use IIS this way? I'm using IIS in server 2003. Sorry for writing a book, but I guess I'm too new to know what is relevant and what isn't. Thanks for your time, I'm coming up on the deadline for me to roll this out, and I'm thoroughly stuck. -Rob Evert Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392591
  - 8
    - Hosting multiple sites using Host Names and Port Numbers -- help! So, this may be a really simple thing to do, but I am having trouble, so would appreciate any help. Here is the thing. I am trying to host multiple websites on my IIS 6.x server. Currently it is set-up so that each site can be accessed by typing http://71.149.xxx.xxx/sitename. So: site 1 is at http://71.149.xxx.xxx/sitename1 site2 is at http://71.149.xxx.xxx/sitename2 and so on. When I go to setup the Host Names, I am trying to make it such that http://71.149.xxx.xxx/sitename1 is redirected to http://sitename1.mymainsite.com and http://71.149.xxx.xxx/sitename2 is redirected to http://sitename2.mymainsite.com and so on but instead I get the message "Invalid Host Name." Do I need to assign each "site" a different port on the IP address? And if so, how do I redirect so that the content comes from the correct files? In other words, the content for sitename1 is different from the content of sitename2 which is different from the content of sitename3, etc. I hope that makes sense. If not, I can try to clarify more. Any help is appreciated. I took a look at iisanswers site and the microsoft site, but neither is giving me what I am looking for. Thanks in advance, Timothy ttravis@lotsapeoples.com Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392585
  - 9
    - IIS 7.0 problems I have installed windows longhorn, I'm trying to install IIS, and I'm getting lots of errors in the installation of the http and security, the only portion that is installed is the FTP. I tried to uninstall IIS and install it back again, never succeeded. I have Directory services, DNS, and I'm trying to install IIS on the server. any ideas ? Thank you so much. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392577
  - 10
    - Cannot access web server from internet I'm trying to open my web server to the internet and I cant seem to get it to work. I've opened port 8080 on my router and in Windows XP firewall and I've set the TCP port in IIS also to 8080. I can access the website ok from within the network but outside it just seems to timeout. According to my ISP's help they do not block port 8080 so I just don't understand why I cant see the website using my IP. The address is http://80.229.15.67:8080/ Thanks. SuzyB Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392576
  - 11
    - IIS 7.0 ADSI script Hello, My legacy vbs script uses ADSI for creating a virtual directory, but under IIS 7.0 it creates it with a DefaultAppPool when I want it to create with a Classic .NET AppPool to avoid having to retouch the web.config. Any ideas how to do this please? -- Thank you, Christopher Ireland Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392574
  - 12
    - Error number: -2147023545 Implementing IISADMPWD tool Dear all, I implemented the IISADMPWD tool following exactly the KB907271 at this url http://support.microsoft.com/kb/907271/en-us, anyway when I am trying to change the password I received that message disabling the show friendly error messages on IE 7 "Error number: -2147023545". I received that error after I inserted credentials to modify on that page http://servername/iisadmpwd/aexp2b.asp and I pressed the submit. Anyone that know how to solve this issue? thanks all again. Matteo Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392573
  - 13
    - ASP upload files when files dimension exceeds 3MB. Why ? Hello. I'm experiecing a problem with file uploads from ASP pages. On a Windows 2000 - IIS 5 server we're running an ASP Classic application that features an upload form for files of great dimensions (100+MB). Problem is, when we try to upload a file exceeding 3MB we retive almost immediatly a message such as 'The page cannot be displayed'. We do not even reach the page that contains the code for file managing; when we click on the submit button in the form with enctype multipart form data the application ends and the error is visualized. For files under 3MB there are no problems at all. The FAQ of our upload third party component (ABCUpload by Websupergoo) state that we could either have problems with our proxy or we could be stopped by a wrong URLScan setting: we do not have any proxy nor URLScan is installed on our server. I may add that all the configuration of the script timeouts on IIS are correctly set. Is there anyone who can suggest us a solution ? Thanks in advance for any help... Newcomsas Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392572
  - 14
    - FrontPage extensions enabled but does not work Hi. I have FrontPage extensions enabled on our 2003 webserver and activated in the management console, but if I look at the preferences of each domain it says that FP is not enabled, but it is. I have run a secure server program from MS several years ago, could this interfere? It is an upgrade from 2000 server. Regards Mikael Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392569
  - 15
    - Cannot Install SQL Server Client Admin Tools on Windows 2003 Web Edition? I have two developers using Windows 2003 Web Edition to develop web applications. They are not being allowed to install the SQL Server Manager client tools. Why would Microsoft introduce restrictions on the SQL Server *client* administration tools in the Web Edition of Windows 2003? How can it not be clear to anyone that the SQL Server client tools are needed for development of *web* applications?! Whatever licensing theory they are applying here is very obscure. -- Will Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392561
  - 16
    - Help... going to explode! Hi there, I recently upgraded to Vista (fresh install) as I was using XP Pro. Moved my web pages to Vista and am trying to get write permission set to a directory on my site hosted by IIS7 on my system. (http://RadioXex.ca) On XP all I had to do in IIS Manager was to right-click on the directory and set write permission. I need to write to a file called DB.MDB in that directory. (It's from a tracker called MetaTraffic that tracks site traffic). I tried setting permissions directly (from outside IIS7 Manager) by going to the directory on my hard drive and going to the folder > properties > security and adding a IUSR and IIS_ISURS user with "full control" checked. This didn't help. (My website has it's own directory on my computer. i'e'. c:\websites\RadioXex I'm not sure if this info helps.) I need to do this to another directory within my site so my php code can create images there, so it too needs write permissions. Any suggestions? I've tried searching the web. I'm really confused now. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392559
  - 17
    - IIS 7.0 - CGI executables Hi! I'm trying to set up IIS 7.0(Vista) to support CGI stand alone executables(made with Delphi). I have installed ALL the features in IIS7, including CGI support. When I run my CGI program, the server returns "502.2 - Bad gateway". This is a simple test script that only returns "OK" when run. It runs ok in IIS6, but not in IIS7. Does anyone have any suggestions on how to resolve this? Kind regards, Geir Bratlie Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392558
  - 18
    - HttpException (0x80070002) - Failed to start monitoring file chang Windows Server 2003 Standard Edition Service Pack 1 When "Browse" the Default Website: Directory 'D:\XXXXX\BIN' does not exist. Failed to start monitoring file changes. Checked NTFS re http://support.microsoft.com/default.aspx?scid=kb;en-us;Q317955 and followed the suggestions. No improvement. As Administrator: Neither Windows Explorer nor IIS Manager show the Directory 'BIN' (DOS) Command Prompt allows Navigation to the Directory and (dir) lists the files but cannot change the attributes (attrib) because the 'D:\XXXXX\BIN' is not found (!?) Ran 'attrib -H /S /D' in D:\XXXXX'; it does not report a setting change for the BIN directory that is present according to the DOS navigation. Thank you in advance. Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392556
  - 19
    - load balancing // caching -- any recommendations? I am looking for a single device that does both load balancing and caching. I have an application that is very image intensive. I am looked at Cisco CSS and Radware products but they seem to split out this functionality to different devices. What is everyone doing to achieve these pieces? Thanks! Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392551
  - 20
    - Hosting Multiple Websites with IIS 6 I am trying to setup multiple websites on and IIS 6 box. I am using host headers. I have the 2nd site setup and working internally, but from the outside i get defaulted to the default website. Any ideas would be appreciated. Thanks in advance. BW Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392535
  - 21
    - Web Server 2003 vs. Vista I am thinking of buying a new web server and I'm wondering if I should buy Web Server 2003 or Vista. Anybody got any wisdom to offer? Thanks in advance, Bob Sweeney Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392530
  - 22
    - Getting CDONTS to work as per article 186204 in IIS As per article 186204 in KB I have done all that the article says, but when I press the submit button the Asp page remains blank and now mail is actually send. There are a few differences : The article speaks of 'Default SPTP server', my IIS has a 'Default SMTP virtual server' and between step e) and f) I must still press the advanced button. I further has a 'Mail server' a 'File server' and my local XP machine with IIS activated, so what is the Fully Qualified Domain Name and 'Smart Host' -- Rgrds Hans Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392529
  - 23
    - Native HTTP compression question! Hi, I understand that there is HTTP compression funcitonality within IIS6. Does this require a certain version of a web browser to enable the decompression of the website? Thanks for your help Damon Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392528
  - 24
    - cookie not set i have a problem with cookies not getting set under iis webserver, i have seen that this is a security issue my domain name has a underscore in it's name test_domain and the computername is http:\\webserver1.domain_zb\test in tthe url how can i correct this behaviour what do i need to set in my dns server or somewhere else to get it work firefox has no problem with the underscore but i need to work with IE6 Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392525
  - 25
    - website won't start Hello, Using SBS 2003. IISAdmin service wouldn't start with code -2149647636. A bunch of dependant Exchange services would start either. I found a KB that recommended, and I re-registered msxml3.dll which fixed the problem with IISAdmin not starting. So, IISAdmin is running and all exchange services are up. But, I can't get any websites started, so, critically for us, OWA is down. When I try to start the website, no error either on the screen or in event viewer, but nothing starts. When I click on some property pages in IIS (like default website, home directory), I get a "class not registered" error. Any ideas? TIA! Tag: Checking whether Authentication Information is encrypted in SSL or Tag: 392522

Hello,
I wanted to know that once SSL is implemented with Client and Server
Certificates on a Website. How to check if Authentication information i.e.
User Names and passwords are passing from Client to Server in encrypted form
or not ?
Website is developed in ASP.Net 2.0 with Login Control and Membership
provider.

Thank you.

Top

Re: Checking whether Authentication Information is encrypted in SSL or by Ken

Ken
Sat Feb 24 21:55:29 CST 2007

Hi,

You can use a packet capture tool such as Ethereal (www.ethereal.com) or
Netmon to see what traffic is passing between client and server. When using
SSL, all traffic is encrypted between client and server.

Cheers
Ken

--
My IIS Blog: www.adOpenStatic.com/cs/blogs/ken

"anoop" <anoop@discussions.microsoft.com> wrote in message
news:C7729970-F257-4548-9E14-8C3C15A038DF@microsoft.com...
> Hello,
> I wanted to know that once SSL is implemented with Client and
> Server
> Certificates on a Website. How to check if Authentication information i.e.
> User Names and passwords are passing from Client to Server in encrypted
> form
> or not ?
> Website is developed in ASP.Net 2.0 with Login Control and Membership
> provider.
>
> Thank you.

Top