Folder Security

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ IIS
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - POST problem - IIS sc-win32-status:64; sc-status:400 Hi All, I am facing a strange problem which occurs on selective networks. I have this ASP.NET application hosted on a 2003 machine. It works as expected in most of the networks on which i tried. The app has a single aspx page which expects few inputs from the user (through textbox, radio button etc.) followed by clicking on a Submit button which would POST the data back to the server for processing. Problem - the POST doesn't work when I call my app from some selective networks. After clicking on the submit button and waiting for about 5 mins, browser shows "server not available". In my IIS log, I find that the 'sc-win32-status' is 64 and 'sc-status' is 400. My Page_Load doesn't get called at all on POST (Submit), leave aside the button click event. Any pointers to solve this abend would be very helpful. Anand -- Tag: Folder Security Tag: 366133
  - 2
    - Unexpected Error Hi.... Can anyone help with this problem? When I open the IIS the "Default Web Site" appears as Stopped, and when I try to start it, I get this error "Unexpected Error 0X8007C801 ocurred" I don't get the solution and I have a lot of virtual directories over there. I looked for it in forums but all the answers (just a few) say the same and refers to the FTP service (which I don't use) and to the anonymous user in the properties of the FTP. I tried that in the Web service, but I keep getting the same error message. Any ideas? -- Thanks ;-) fasenjof Tag: Folder Security Tag: 366132
  - 3
    - Sequence Of Events When Starting, Stopping, or Pausing a Web Site I would like to know what specifically happens when a Web Site in IIS 6 is started, paused, or stopped (at least at a "high level"... not necessarily looking for minutae). The only documentation I have found so far only tells me how to start, pause, or stop (but not what's going on behind the scenes). Thanks! Tag: Folder Security Tag: 366129
  - 4
    - VB.NET problem Dear All, when i try to new project for web application, the following message is appearing and stoping the my VB.NET "The web server reported the following error when attempting to create or open the web project located at the following URL: http//localhost/webapplication1, the operation time out.' Can you please anybody help on this matter? I appreciated if you can mail me to "Alavi.Kutty@sa.nestle.com" Thank you in advance, Best regards, Alavi. Tag: Folder Security Tag: 366128
  - 5
    - Change the way IIS 6.0 Log order I recently change in our Web site in windows 2000 server iis 5.0 to windows 2003 iis environment and same problem in log order format IIS 5.0 writes the W3C Extended Log File Format W3C Extended Log File Format #Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status sc-bytes cs-bytes cs(User-Agent) cs(Referer) IIS 6.0 writes the W3C Extended Log File Format W3C Extended Log File Format #Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-bytes any help that you can provide Tag: Folder Security Tag: 366118
  - 6
    - Deploying IIS 6.0 Application To IIS 5.0 Hello All, Question regarding application compatibility... We have been developing an asp.net application and deployed to a test environment consisting of Windows server 2003 Web Edition, IIS 6.0 and MDAC 2.8 SP2. Prior to production deployment, it was noticed (I know.....) that our production server is in fact running Windows 2000 with IIS5.0 Will my 2003/IIS 6.0 application work with my Win2k/IIS5.0 setup? I would assume not, but have been engaged by a developer that finds my concerns with this discrepancy to be somewhat laughable. Can any one provide me with a good answer, as I have looked and information on this topic is lacking (probably because no one would consider doing what my developer says is a piece of cake...) Please help. Any and all feedback is most welcome. Thanks for your time. B. Tag: Folder Security Tag: 366117
  - 7
    - Exporting to PDF on webserver freezes IIS and w3wp.exe process use We are having major problems installing our project to our web server. Everything works fine for exporting to pdf until more than one person tries to create a PDF. It basically freezes and you have to restart IIS as it stops responding. It works fine on the developement machine without a problem. However when we put it to the main server to test, it only works temporarily. We are using a 3 page report with small fonts and VBScript to arrange the format of the fonts (ie: using /par etc) and SQL 2000 database queries to extract information from the database. The reporting tool is ComponentOne reports for asp.net. The OS is windows server 2003 SBS. We have tried the following. 1. Clearing the cache in code and disposing the object 2. set up the http handlers for images 3. set up the folders with full control for the images to save to 4. separated out each report into a separate report file 5. tried viewing the report to html and not exporting to PDF and still after a while it crashes. 6. The following error ocures on the server: "w3wp.exe (PID: 3004) was recycled because it was suspected to be in a deadlocked state. It did not send any responses for pending requests in the last 180 seconds. This timeout may be adjusted using the <processModel responseDeadlockInterval> setting in machine.config." We have tried setting this also without success. We have tried setting AppPooling in the IIS to be much lower for the site concerned. No Luck. 7. We have contacted componentone and don the sggestions they have suggested. those being: a) Clear the report cache directly in code: c1webreport1.Cache.Clear() b) Make a small change in the report to invalidate the cache: c1webreport1.Report.Tag = DateTime.Now.Ticks c) Add the necessary permissions d) Change the ImageRenderMethod to http handler (please update web.config as described in the readme file). NO LUCK THERE. I am at the end of my rope and don't know what to try next. Havent slept for 36 hours and NEED HELP!!!! Please please help....... Graeme Tag: Folder Security Tag: 366116
  - 8
    - Logging for multiple domains to a single log? Hi all, We are hosting 2 domains on IIS 6, one of which simply forwards to the other. The logs for both sites appear inf different directories. Since the 2 seperate domains are actually considered one site and users are able to access the site through either, is there a way that I can have both log to the same log file? Can I manually specify to waht directory all the web activity gets logged? Thanks Ren P.S. If there is not way of doing this, does someone have a suggestion for a good free web analysis tool that I could run against the logs, something similar to WebTrends? I am currently using AWStats. Tag: Folder Security Tag: 366109
  - 9
    - Accessing IisCtl.IisServiceControl Remotely I am trying to call IisCtl.IisServiceControl from another machine. All I want to do is reset IIS. I have no problems calling it locally, but I get "Permission Denied", error code 800A0046 when calling it remotely. The script (JSCRIPT) is simple: var iisctl = new ActiveXObject("IisCtl.IisServiceControl", "servername"); //fails on this. IISCTL can be found under DCOM Config. Is it possible to call IISCTL remotely? If so, what settings would I need to change? Regards, Duwayne Sy Tag: Folder Security Tag: 366105
  - 10
    - Is a password needed when authenticating to an ssl ftp server When connecting to an FTP server with SSL do you still need a user ID password to authenticate to the server. Or does the cert. that the client downlaoded handles the authentication with the server. Forgive me folks, I tried to look for the answer and could not find one. I also browsed the RFC 2228 and didn't see what I want. Thanks much Tag: Folder Security Tag: 366104
  - 11
    - IIS Guru ! Need help restoring metabase Basically my server died and I reloaded a fresh OS install on this server. I was able to recover the metabase.xml from the old hard drive. However when I tried to restore from that .xml file, It says invalid signature. All the newsgroup / forum post I've read says that message is caused by no password being set on the .xml file. Is there a way to fool the restore process into ignoring the password? This would make my life so much easier as I have to restore about 130 sites. Ed Tag: Folder Security Tag: 366099
  - 12
    - problem with large uploads on IIS 6.0 Hi, I have problem with large uploads (over 4 MB) on IIS 6.0 and win 2K3. We have build this new win 2k3 machine and used microsoft migration tool to migrate from windows 2000 (IIS 5) to windows 2003 (IIS 6), everything worked beautiful, except this upload issue. I have modified AspMaxRequestEntityAllowed="1073741824" in metabase.xml, initially it wasnt uploading over 200K, after the change I was able to upload over 200K but not above 4 MB. What could be the reason? Appreciate your help. Thanks SAI Tag: Folder Security Tag: 366093
  - 13
    - Disabling TRACE verb on IIS 6.0 I have alraedy posted this on IIS-Security, and since I have not recieved any responses, I am posting it here again: Hi, I am using IIS 6.0 resource kit "Wfetch" utility to check my IIS 6.0 web server for HTTP TRACE verb. If I send a TRACE verb to my web site, I recieve: HTTP/1.1 Error 501 - Not Implemented which based on KB247643 is an indication of TRACE verb being disabled on my site, a good sign for my specific requirement. However if I send HTTP OPTIONS verb to the same web site I receive: HTTP/1.1 200 OK\r\n Allow: OPTIONS, TRACE, GET, HEAD\r\n Content-Length: 0\r\n Server: Microsoft-IIS/6.0\r\n Public: OPTIONS, TRACE, GET, HEAD, POST\r\n Date: Tue, 12 Jul 2005 17:12:21 GMT\r\n \r\n Does this indicate the TRACE is enabled? or Allowed? Which one of the above two responses supercedes the other? I am responding back to an audit report and need to confirm this. Thanks Omid Tag: Folder Security Tag: 366092
  - 14
    - Problem with application variables Hi, We have some arrays stored as application variables (IIS 5.0) Everything works fine until suddenly the variables lose their value. This only happens with the applications that store arrays, not with everyone, the rest of the application variables are not affected. These arrays are set when the application starts and they are never changed by any other page. When this happens the application must be restarted so they load the information back. Any idea / suggestion / solution ? Thanks in advance. Tag: Folder Security Tag: 366089
  - 15
    - stop (or start) website from CMD.EXE from CMD.EXE , or in a .BAT file, is there a command that can be used to stop (or start) the Default Web Site (or other website) on a server ? (I'm don't mean iisreset.exe -- I don't want to reset IIS). Tag: Folder Security Tag: 366088
  - 16
    - First Time User (IIS 5.1) Hello. I've been tasked with developing a small database driven website for tracking various tasks. I dusted off a "small server" (Dell PowerEdge 400SC) and installed Windows XP Pro (with all updates), MySQL, and PHP. I enabled the IIS and everything appears to be working. The IIS version is 5.1, correct? Now, I know enough to know I don't know what I need to know. So here it goes... I use a DSL service that provides a dynamic IP address. My server sits behind a router and is part of my home network. Next week I need to "demo" what I've accomplished thus far and need to know how I can have my co-workers access the wwwroot. Since it's dynamic, do I need to register with a DDNS? Do I need to create a domain name? Do I need to put the server in the DMZ during the demo process? Any assistance would be greatly appreciated. FWIW, I am scrolling through the messages to see if any of these topics have been discussed and I have ordered some books on IIS administration. Hopefully this isn't going to be that big of a deal. Thanks. Ward Tag: Folder Security Tag: 366086
  - 17
    - Log analysis Hi! Im looking for a good log analysis, any advise??? Freeware would be great, but any kind also.. Thanks Tag: Folder Security Tag: 366085
  - 18
    - New Web Project Connecting to a Remote Server Hi, I am trying to create a new web project. Going through the Wizard, I come to the question "What server do you want to use?". I enter the server name and click "Next", which takes me to Step 2 of the Wizard. Here I click "Connect to an existing web application on ...(the server name)". I then click "Finish". It now tells me that a name and password is required. When entering the name and password for the remote server it defaults back to MY domain name and asking for the password again. I have checked my user security settings and and full access. I don't know why I can't log on... ... ... Can anybody point me in the right direction? Your help is MUCH appreciated!!! Best Regards, Christian Tag: Folder Security Tag: 366083
  - 19
    - Includes on XP IIS install I am using the IIS on Windows XP to test pages I develop. Is there a limitation that Includes are not processed? I know they work on the server (IIS 5) but do not seem to work from the local IIS install. Thanks Tag: Folder Security Tag: 366075
  - 20
    - Case sensitivity Can someone tell me if there is a way to force case-sensitivity in IIS? I need to be able to emulate web hosting on a UNIX server. Thanks! Vince Tag: Folder Security Tag: 366074
  - 21
    - SSL Proxy I am pondering on some ideas here. with SSL for a non SSL enabled site. Here is the plan. I have an existing site www.SiteA.com and its resources are all accessed over SSL https://www.siteA.com or https://www.siteA.com/forum/ I think you get my point here. I have a box (hardware device) that I would like to access over the web as it has a web interface for management. The thing is this.. *I know you know where I am going*. The device does not have SSL. I would like to some how use IIS and add a virtual directory to my existing SSL enabled site and use it as a proxy in a scene to send and receive info from the device. So that when I am out there out of the office I can just go to https://www.siteA.com/device/ and access my device. Is this possible? Thanks. Note: My www.siteA.com is under a firewall with the 443 SSL port mapped to the web server and the site on the device I need to access is in my internet network so it's important that I can do this. Thank you Tag: Folder Security Tag: 366067
  - 22
    - Streaming vs. Downloading I'm not sure if this is the wrong forum for this question...but I couldn't find a better one. Please direct me elsewhere if you no of a better place to pose this. Basically, if I host a media file on my IIS server and I'd like the user to click on a list of files and have it automatically play in whatever their default player for that file type is, how would I do that? If I simply set up the browse function, the user has to download the file and then it will play. I'd like to stream/buffer it. Similar to what shoutcast does but allowing the user to browse the files via a list and click --> stream. I imagine I'll have to use some ASP to handle the lists, but how should the link(s) render for this to stream/buffer instead of download? Thanks, James Tag: Folder Security Tag: 366062
  - 23
    - Multiple SSL Certificates in IIS 6 (W2003 SP1) I want to install two diferent certificates for each site. https://www.domain1.com https://www.domain2.com Microsoft says that If you have Microsoft Windows Server 2003 installed, you can upgrade to Windows Server 2003 Service Pack 1 (SP1) to work around this issue. With IIS 6.0 on Windows Server 2003 SP1, SSL for host header-based sites is now supported. The I folow Microsoft cscript.exe adsutil.vbs set /w3svc/<site identifier>/SecureBindings ":443:www.domain1.com>" cscript.exe adsutil.vbs set /w3svc/<site identifier>/SecureBindings ":443:www.domain2.com>" It seems that works because redirect correctly to the appropriate domain, but always gives the same certificate at this case SSL certificate for www.domain1.com independently that the call carries out it to a domain or another. What can I do? Thank you for your help Tag: Folder Security Tag: 366059
  - 24
    - Error on Security with HTTP Adapter of Biztalk 1. I installed Biztalk Server when It asked me to create human services site I went to IIS and created a new site on port 99. THen I continued with installation after install I see that the new website has 2 new virtual directorys called HwsMessages and HwsService. I noted that HwsMessages has the dll file that I am trying to use on my lab called BTSHTTPReceive. 2. I created the biztalk solution with 2 schemas , one property schema, one map, 3 send ports , 1 group send port, 1 receive port. The receive port is HTTP configured to this. Virtual Directory plus Isapi Extension: /HWSMessages/BTSHTTPReceive.dll Public Adress: http://localhost:99/HWSMessages/BTSHttpReceive.dll 3. Then I created a new c# website in the port 99 called HTTPSender, I added some textboxes and the button has the following code. private void btnSubmit_Click(object sender, System.EventArgs e) { string requestLocation = "http://localhost:99/HwsMessages/BTSHTTPReceive.dll"; status.Text = ""; XmlDocument xmlDocument = new XmlDocument(); xmlDocument.PreserveWhitespace = true; XmlNode tempXmlNode = xmlDocument.CreateNode(XmlNodeType.Element, "Activity", "http://que.activity"); xmlDocument.AppendChild(tempXmlNode); tempXmlNode = xmlDocument.CreateNode(XmlNodeType.Attribute, "type", ""); tempXmlNode.Value = type.SelectedItem.Text; xmlDocument.DocumentElement.Attributes.Append( (XmlAttribute)tempXmlNode); tempXmlNode = xmlDocument.CreateNode(XmlNodeType.Element, "Location", ""); tempXmlNode.InnerText = location.Text; xmlDocument.DocumentElement.AppendChild(tempXmlNode); tempXmlNode = xmlDocument.CreateNode(XmlNodeType.Element, "Timestamp", ""); DateTime now = DateTime.Now; tempXmlNode.InnerText = now.ToString("s"); xmlDocument.DocumentElement.AppendChild(tempXmlNode); tempXmlNode = xmlDocument.CreateNode(XmlNodeType.Element, "Notes", ""); tempXmlNode.InnerText = notes.Text; xmlDocument.DocumentElement.AppendChild(tempXmlNode); try { HttpWebRequest request = (HttpWebRequest) HttpWebRequest.Create(requestLocation); request.Method = "POST"; ASCIIEncoding encoding = new ASCIIEncoding(); byte[] requestData = encoding.GetBytes(xmlDocument.OuterXml); request.ContentType="application/x-www-form-urlencoded"; request.ContentLength = xmlDocument.OuterXml.Length; status.Text += "Submitting activity message"; Stream requestStream = request.GetRequestStream(); requestStream.Write(requestData,0,requestData.Length); requestStream.Flush(); requestStream.Close(); HttpWebResponse response = (HttpWebResponse) request.GetResponse(); StreamReader responseData = new StreamReader( response.GetResponseStream()); status.Text = System.Web.HttpUtility.HtmlEncode( responseData.ReadToEnd()) + " "; } catch (WebException wex) { status.Text = "Unable to complete web request. Web Exception error: " + wex.Message; } } After submitting I got this Error. Unable to complete web request. Web Exception error: Error en el servidor remoto: (401) No autorizado IIS has the following security on the new website I created. Anonymous Authentication and Integrated windows authentication are enabled. On the virtual folder called HwsMessages that has the dll. Windows authentication enabled. On the new web application called HTTPSENDER that I just wrote Anonymous Authentication and Integrated windows authentication are enabled. AS this Didnt work I followed the steps on the books. It literally says HTTP Receive Location That's all the code we need to write. Everything else in our solution is a matter of configuration. First, we need to put the HTTP receive adapter out there somewhere. To make things easy, I've put it in the same folder as HTTPSender, but this is not necessary. In fact, in a real system in which messages are going from dispersed sources to a central handler, this would not be the case. Wherever you decide to put the handler, you simply copy BTSHTTPReceive.dll from the HttpReceive folder under the BizTalk installation to the target location. Using the Component Services application in the Windows Control Panel's Administrative Tools folder, configure the HTTPSender application (or the Web application you create, if you elect to put the HTTP handler assembly in another location) to use the identity of a member of the BizTalk Users group to ensure that the handler will have access to the MessageBox I did exactly the same except and also changed the receivelocation and the code for the URL in the submit button. Now I got a different error. Unable to complete web request. Web Exception error: Error en el servidor remoto: (405) Método no permitido. Tag: Folder Security Tag: 366055
  - 25
    - Setting up Windows Media Services with IIS6 on server 2003 I have been trying to set up http streaming using windows media services, while running IIS 6 simultanlsy on the same machine (server 2003). I have installed 2 nic cards, each with a differant public ip address, one assigned for the streaming services and the other for IIS to run on. I wish to run a website and a ftp account from IIS. I have read the following article, but on step 13, get into trouble as it refers to nsunicast , which is not present with Server 2003. http://www.microsoft.com/technet/prodtechnol/Netshow/deploy/wmsiis.mspx I am presuming that the above article is still correct upto the point of the regedit, but if i stop at this point, restart the server and try to enable http streaming on the media services section, i get the error saying that port 80 is in use. Can anyone help please? Thanks Tag: Folder Security Tag: 366053
- Next
  - 1
    - Event viewer error "The server was unable to read the file C:\WINNT\help\iisHelp\common\404b.htm. The file does not exist. For additional information specific to this message please visit the Microsoft Online Support site located at: http://www.microsoft.com/contentredirect.asp. " Right - I've disabled this directory for security purposes, but why is the server trying to read the file? and which process is attempting to access it? And more to the point, how can I get it to stop trying to read it so it doesn't warn me about it?! Tag: Folder Security Tag: 366039
  - 2
    - ASP.NET needed I need to get a copy of ASP.NET for IIS as I need to access and install applications from Visual Studio .NET. It says IIS does not have ASP.NET installed (or something like that). Pleasse help, ProMaker Tag: Folder Security Tag: 366038
  - 3
    - Installing SSL on IIS 6 I am trying to install a SSL certificate onto our IIS server to secure WSUS traffic. I have followed all the instructions from this page (http://msdn.microsoft.com/library/default.asp?url=/library/en-us/secmod/html/secmod30.asp) and have got to the section called "Submit A Certificate Request" and cannot progress further than step 6. I have pasted the contents of the certificate into the top text box as it states in step 6. However this is where it all falls down. It does not mention the second text box which asks for additional attributes, so when I click Next to continue I just get sent to an error page that tells me that I shouldn't have bookmarked it (!?!?!) and that I did not get to this page as a reult of a form submission! So I dont even get to step 7 where is says to choose Web Server from the certificate templates! Please, please, please someone help me. I don't know a lot about IIS and even less about installing certificates, but as far as I can tell I have followed the instructions to the letter.... Thank you in advance Tag: Folder Security Tag: 366037
  - 4
    - FrontPage 2002 Software: FP 2002, XP Pro, IIS 5.1 I have a web in c:/inetpub/wwwroot I can access the web using that path in FrontPage. I have added a default.htm and if opened with MSIE browser the site works as expected. I can even open http://localhost/default.htm But If I try to 'open the web' http://localhost/ from FrontPage I get: You do not have permission to access this web folder location. If I try to open http://socrates/ , which is my computer name I get: Connecting to web server... times out with error message: the folder http://socrates isn't accessible. The folder may be located in and unavailable location, protected with a password, or the filenames containes a / or \. Doing a little research I found this article about IIS 5.0. Article ID: 271071 Review May 17, 2005 Revision 12.0 How to set required NTFS permissions and user rights for an IIS 5.0 Web server Should I use this article to setup IIS 5.1 with FrontPage 2002? Would I want to? How should I be administering the wwwroot web with IIS 5.1 and FrontPage 2002? I would like full functionality for FrontPage 2002, including subwebs, and with the ability to publish to a commercial internet hosting service that provides FP 2002 server extensions. I do not need to collaborate, but would like server stats and version control that sharepoint services provides. Not to much to ask I think. This is getting confusing and entangled. Life was simple until I decided to add .Net Framework 1.1 to the development environment. Could someone set me straight on this? Yes, I know I should be moving to 2003, but next on the list will be learning ADO.Net and ASP.Net. Thanks, Dennis D., http://www.dennisys.com/ Tag: Folder Security Tag: 366036
  - 5
    - ISA digest authentication with web service Hi, I have a web service with Digest authentication configured on IIS server. For accessing the web service i have to go through the ISA Web Proxy. When the ISA web proxy is configured to work on basic authentication i am able to access the page. But when i change the ISA authentication scheme to digest authentication it is not able to access the page. The IIS logs are as follows: When ISA BASIC Authentication is on the log are as follows:- 2005-07-13 07:21:50 10.112.7.44 GET /_wmcs/licensing/license.asmx - 80 - 10.112.6.88 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.0;+.NET+CLR+1.1.4322) 401 2 5 2005-07-13 07:21:52 10.112.7.44 GET /_wmcs/licensing/license.asmx - 80 P2PDRMNTD\sunil 10.112.6.88 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.0;+.NET+CLR+1.1.4322) 200 0 0 When ISA DIGEST Authentication is on the log are as follows:- 2005-07-13 07:19:06 10.112.7.44 GET /_wmcs/licensing/license.asmx - 80 - 10.112.6.88 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.0;+.NET+CLR+1.1.4322) 401 2 5 2005-07-13 07:19:07 10.112.7.44 GET /_wmcs/licensing/license.asmx - 80 - 10.112.6.88 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.0;+.NET+CLR+1.1.4322) 401 2 5 2005-07-13 07:19:07 10.112.7.44 GET /_wmcs/licensing/license.asmx - 80 - 10.112.6.88 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.0;+.NET+CLR+1.1.4322) 401 2 5 In both the cases the dialog box for getting the credentials for web service is prompted. But it seems IAS is not actually forwarding the right credentials as i can't see user name p2pdrmntd\sunil in the logs. What should i do for accessing the web service with Digest authetication of IAS enabled. I have set the property of user(p2pdrmntd\sunil) to store with reversible encryption. rgds, Sunil Virmani -rgds, Sunil Virmani Tag: Folder Security Tag: 366035
  - 6
    - Remove Port 80 on IIS 5 (only allow 443) I use a software with a build in webserver listening on port 80. I want setup iis to listen on port 443 SSL but only on port 443. How can i remove the default port? Id is not possible with the gui in the mmc. Tag: Folder Security Tag: 366032
  - 7
    - Configuring IIS for Intranet Hello... I am a student in college studying computer science engg in India.Here we dont have any New and Advanced stuff to read..So we have to learn all new and advanced stuff on our own. In my College lab.A server connected to 100 systems .And I have Already developed a website for it...Before uploading it to IIS are there any precautions and security related Issues . Tag: Folder Security Tag: 366030
  - 8
    - how can i REMOVE port 80 and only allow port 443 on iis 5 hello all i try to disable the port 80 on my iis 5 running under windows xp pro. I want to run only the port 443 for ssl connections. On the port 80 i'll run an application with a build in webserver listening on port 80. I don't want to move the port 80(iis) to another port. Maybe i can hack the iis metabase to disable the default port? Tag: Folder Security Tag: 366026
  - 9
    - logging user sending web based e-mail (IIS 5/6) Dear group, For some time we have been struggling with the following. Can we have IIS to log the user who is sending out web-based e-mail? Our web servers are installed with Windows2000 Advanced Server (IIS5) or Windows 2003 Web Edition (IIS 6). We host several hundered web sites (domains) per server. E-mail can be send by scripts (ASP, PHP, ASP.NET, CGI/Perl) using components like CDONTS, CDOSYS, JMail, ASPEmail, mail(), Mail::Sendmail, and so on. For outgoing SMTP, the standard IIS SMTP snap-in is used. Per domain there are two unique users: domain.com and IUSR_1234 (the visitor). At this moment only the server name (for instance net3-nl-iis-32) is logged in the SMTP log file (see example below). But we would like IIS to log the user who is sending e-mail (for instance "vevida.com" and/or IUSR_1234). Is this possible? If yes, how? We have been playing around with log file settings, such as logging in NCSA format and W3C format (even with all option enabled). A current log file part (W3C with all options enabled) is (wrapped): ---- | #Fields: date time c-ip cs-username s-sitename s-computername s-ip + s-port cs-method cs-uri-stem cs-uri-query sc-status sc-win32-status + sc-bytes cs-bytes time-taken cs-version cs-host cs(User-Agent) + cs(Cookie) cs(Referer) | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 220+net3-nl-mail-07.ad.vevida.net +ESMTP 0 0 39 0 62 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionCommand + SMTPSVC1 net3-nl-iis-32 - 25 EHLO - net3-nl-iis-32.ad.vevida.net 0 0 + 4 0 62 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 250-net3-nl-mail-07.ad.vevida.net 0 + 0 33 0 62 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionCommand + SMTPSVC1 net3-nl-iis-32 - 25 MAIL - FROM:<website@vevida.nl> 0 0 4 0 + 62 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 250+ok 0 0 6 0 62 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionCommand + SMTPSVC1 net3-nl-iis-32 - 25 RCPT - TO:<janreilink@vevida.nl> 0 0 4 + 0 62 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 250+ok 0 0 6 0 78 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionCommand + SMTPSVC1 net3-nl-iis-32 - 25 DATA - - 0 0 4 0 78 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 354+go+ahead 0 0 12 0 78 SMTP - - - + - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 250+ok+1121197737+qp+2713 0 0 25 0 + 234 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionCommand + SMTPSVC1 net3-nl-iis-32 - 25 QUIT - - 0 0 4 0 234 SMTP - - - - | 2005-07-12 19:48:57 213.19.161.178 OutboundConnectionResponse + SMTPSVC1 net3-nl-iis-32 - 25 - - 221+net3-nl-mail-07.ad.vevida.net 0 + 0 33 0 234 SMTP - - - - ---- If you require additional information in order to understand our problem, please let us know. -- Met vriendelijke groet / Best regards, Jan Reilink, VEVIDA Nederland BV Postbus 329, 9700 AH GRONINGEN, +31(0)50 - 5492234 Tag: Folder Security Tag: 366024
  - 10
    - ASP error with IIS6 I am getting this error in my application: A ScriptEngine threw exception 'C0000005' in 'IActiveScriptParse::ParseScriptText()' from CActiveScriptEngine::AddScriptlet()'.. Does anyone know what might be the problem and how can I fix it? The application is an ASP application that was running fine on Windows NT but after I updated the OS to Windows 2003(IIS 6.0) it became unstable, there is not a logic sequence to reproduce the error, but suddenly the application starts to get the error above in every pages. Tag: Folder Security Tag: 366010
  - 11
    - IIS6 - Conn. Refused on single folder/link I'm sure this is something I'VE done, but for the life of me I can't see where/how. On the website, from LAN OR WAN the main page pops fine. If I goto my xxx.com/CS link (which USED to work), on the LAN side it's perfect. On the WAN side I get 'The connection was refused when attempting to contact xxx.com' All other folders/links work, just this ONE 1/2 way. Any ideas? Things to check? etc... www.xxx.com (fine) /CS (conn refused) /Old (fine) /xxx (fine) Part of the weblog: 2005-07-12 23:00:33 W3SVC2127081348 192.168.0.50 GET /CS/Default.aspx - 80 - 67.9.20.141 Mozilla/5.0+(Windows;+U;+Windows+NT+5.1;+en-US;+rv:1.7.8)+Gecko/20050511+Firefox/1.0.4 302 0 0 2005-07-12 23:00:53 W3SVC2127081348 192.168.0.50 GET /CS - 80 - 67.9.20.141 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1;+SV1;+.NET+CLR+1.1.4322) 301 0 0 2005-07-12 23:00:53 W3SVC2127081348 192.168.0.50 GET /CS/Default.aspx - 80 - 67.9.20.141 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1;+SV1;+.NET+CLR+1.1.4322) 302 0 0 2005-07-12 23:01:46 W3SVC2127081348 192.168.0.50 GET /CS/Default.aspx - 80 - 67.9.20.141 Mozilla/5.0+(Windows;+U;+Windows+NT+5.1;+en-US;+rv:1.7.8)+Gecko/20050511+Firefox/1.0.4 302 0 0 2005-07-12 23:02:01 W3SVC2127081348 192.168.0.50 GET /CS - 80 - 67.9.20.141 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1;+SV1;+.NET+CLR+1.1.4322) 301 0 0 2005-07-12 23:02:01 W3SVC2127081348 192.168.0.50 GET /CS/Default.aspx - 80 - 67.9.20.141 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1;+SV1;+.NET+CLR+1.1.4322) 302 0 0 Apprec. any insight! David D. Tag: Folder Security Tag: 366008
  - 12
    - Add RSS to IIS5 I have a Windows 2000 Server running IIS5 and the current website runs fine. I want to add an RSS feed and I have formatted an RSS XML file per instructions located elsewhere on the Internet. I don't know what to name the file in IIS, but I have tried feed.rss and rss.xml. What name do I use? I assume that I am also supposed to add something else to IIS, but I don't know what to add. I've found plenty of information for Apache, but nothing for IIS. Tag: Folder Security Tag: 366005
  - 13
    - IIS 2003 localhost/domain.nl returns error 404 Hello, I run an IIS server 2003 with 20 small websites. the website are working ok. in the website directorie i have made a map c:inetpub/wwwroot/demo.com <No header record> c:inetpub/wwwroot/demo2.com <No header record> where I type in the name (from remote PC http:www.<sitename> ) of an exsiting site the site site is working ok. when I type in <ip address>/demo.com Form remote or local pc) I will get the responce and error 404 (from remote Pc/and on the local host) when I remove the header records and leave is blanck and I only type in the <ip address> it shows the page but I want to work with more demo sites with the same IP address but diverent map names. Can anyone help me... Tag: Folder Security Tag: 365996
  - 14
    - Can IIS change AD domains? Before I migrated a server from one domain to another using the Active Directory Migration Wizard V2, I wanted to make sure IIS could be migrated (Exchange and Certificate Authority cannot). Thanks. Tag: Folder Security Tag: 365994
  - 15
    - Event ID 1078 Hello! I have this error repeating. "The state server has closed an expired TCP/IP connection. The IP address of the client is <IP address>. The expired Read operation began at <date> <time>." We run w2k3 standard edition as the state server, and we have w2k3 - web edition as our web servers (web farm). When this occour, the website stops responding and our load balance will switch to another server that is responding. Then after a while IIS will restart and it will start answer again. Any ideas? Thanks! ///Patrik Tag: Folder Security Tag: 365992
  - 16
    - IIS 6 Prefixing path with \\?\ Dear comrades: I have a cgi executable program that has worked just fine under W2000 Server. It also works fine when tested with Windows XP Pro. Under W2003, the cgi executable works except when the cgi attempts to read a file from disk, please see the message reported below: Cannot open file \\?\C:\Web\\Templates\DefaultTemplate.htm Previously, the file path was not prefixed with \\?\ and everything worked as expected. The cgi found the path and loaded the template above. Can someone please shed some light as to what is now different under IIS 6? Thank you, Alex Tag: Folder Security Tag: 365991
  - 17
    - IIS on w2003 GetObject problem - 2 Continuation: still does not work if I leave only one line it returns: permission denied: GetObject !!??? what permission ____ first post with localhost changed to 127.0.0.1 ______________ we have code that inserts host headers it worked fine on w2k server But on w2003 it produces error on GetObject code is ++++++++++++++++++++++++++++++++++++ Dim WebServerObj Set WebServerObj = GetObject("IIS://127.0.0.1/W3SVC/4") hosts = WebServerObj.Get("ServerBindings") .......... ++++++++++++++++++++++++++++++++++++++ Tag: Folder Security Tag: 365990
  - 18
    - iisadmin.mfl When loading IIS I am told this file is missing on my 2003 CD. I know this info may already be here but I can't seem to figure out how to search. From http://www.developmentnow.com/g/59_0_0_0_0_0/inetserver-iis.htm Posted via DevelopmentNow.com Groups http://www.developmentnow.com Tag: Folder Security Tag: 365984
  - 19
    - inetinfo.exe sends outgoing message on shutdown Hi All of a sudden, inetinfo.exe has apparently started to send an outgoing message at the moment of shutdown (not everytime though) This is picked up by my Kerio firewall which then opens up a window over the shutdown window. Any ideas why this might be happening. (I did install a Virtual Network last week and made some changes to the firewall to accomodate it) Any advice welcome Thanks Dave Neve Tag: Folder Security Tag: 365979
  - 20
    - How to limit bandwidth - no really. i want to limit a website on IIS to simulate modem speed. So i enable the per-site Bandwidth Throttling to 5. That doesn't work. The suffix after the 5 is "KB/S" which should be kilobytes per second. The help says enter a value in "kilobits per second - which should be Kb/s. In which case, i want to enter something like 50. Some people claim that IIS will ignore any value lower than 1,024 KB/S. Which means IIS will ignore any throttle less than 1 megabyte per second. Which is not much of a throttle at all. i can't even throttle it to LAN speeds? Unless KB/S really should have been written Kb/s, in which case 1,024 is really "1,024 kilobits per second". Which then implies that the lowest i can throttle a web-site to is about 100kB/s (100 kilobytes per second). Which is about 20 times faster than what i want throttle it to.. Additionally, some people claim that throttling only applies to htm/html/asp/image files. Which is of no use to me, as that is not what i am throttling. i am trying to throttle the web-site. So, how do i REALLY apply bandwidth limiting to IIS? Is there an option "Don't transmit more than this much data in a second?" Tag: Folder Security Tag: 365977
  - 21
    - IIS on w2003 GetObject problem Hi we have code that inserts host headers it worked fine on w2k server But on w2003 it produces error on GetObject code is ++++++++++++++++++++++++++++++++++++ Dim WebServerObj Set WebServerObj = GetObject("IIS://LocalHost/W3SVC/4") hosts = WebServerObj.Get("ServerBindings") .......... ++++++++++++++++++++++++++++++++++++++ another question on 2003 before if you create site it would assign next number i.e. 5,6,7 we created site and it assigned some crazy id like 44667888 is it OK? Thanks Gregory Tag: Folder Security Tag: 365975
  - 22
    - How do I find out the build version of IIS 6.0 How do I find out the build version of IIS 6.0 in W2k3? If you go to help and about IIS you just get 6.0 not the build version. I installed SP for W2K3 and thought the build version would change but according to the scan results it has not. Thanks Tag: Folder Security Tag: 365968
  - 23
    - Confused..... Ok, here's my situation. I have the following configuration: Server 1: Win2003 Server running DNS & IIS/FTP with both public IP and private IP Server 2: Win2003 Server running IIS/FTP, only private IP's. In DNS I set up a subdomain, and gave it the private IP address (well, 1 of them, I set up the NIC on server 2 with something like 10 private IP's) The problem is when I log into Server 2, and bring up IIS. It shows me the structure of all my web sites that is on Server 1's IIS........ Also, when I'm trying to browse to a simple htm file on server 2's IIS, it fails. I'm using host headers on both machines in IIS, so on server 2, I have the host header as bboard.site.com and in DNS for site.com I have a <a> entry for bboard pointing to the priviate IP. I didn't pick a IP for the web site on server 2 (not using one of the private IP's), could that be one of the problems? I'm really confused about this! Thanks, Steve Tag: Folder Security Tag: 365963
  - 24
    - how do I run apache on seperate server behind iis 6.0? I have a new website application that wont run on windows, currently I host my own company domain (and a smaller private web site selected by host headers) on my sbs 2003 server, this new website will be hosted on a new linux server. I have purchased a linux server and it is now connected to my lan (cable modem - sbs server 2003 with two nics, 1 external & 1 internal - 16 port gigabit switch) it is accessible now from within my lan by both internal ip address and web domain name (enabled using dns pointer). I know how to set up a web site in the www root folder of sbs 2003, I also know how to redirect it to the web folder of another windows machine but I don't know how to redirect it to the web folder of a linux machine. Currently if you go to www.newwebsite.net the internet name servers points it to the ip address of my sbs 2003 server via www.no-ip.com (which works great for my main domain (and smaller private domain) etc that are running on the server). But this newwebsite is running on a linux server on my lan with the ip address of 192.168.16.15 When I type in http://192.168.16.15 it works great, When I type in http://linuxserverip.company.local it works great as well And finally When I type in www.newwebsite.net it works fine for me because my dns knows to point to http://linuxserverip.company.local However if you type that in from outside my lan it fails. How do i redirect to a linux webserver on my domain? Cheers, Dean Tag: Folder Security Tag: 365962
  - 25
    - Client defaulting to NTLM NOT Kerberos I am the Network Engineer and I am working with our developer to get this straightened out. One web server 2003 IIS 6.0 One NAS File server running windows powered 2000 Adv. w/ NTFS permissions Virtual Directory on the web server pointing to the NAS Integrated turned on and annon. turned OFF We want the kerberos token to pass through the web server and present clients credentials to the file server. Development is done in ASP.NET and impersonate is enabled in web.config file Delegation is turned on for the web server in active directory The NAS shows annon. account when ever the code is run from the client. Developer did a debug and found that the client is authenticating with NTLM. Our domain is native 2003. Why would this be happening and what can we look for to force kerberos so that security goes all the way through the system? Thanks Tag: Folder Security Tag: 365959

Hi,
We are developing one email application. Like every other email sites, the
user will be able to send .receive mails.Now what my problem is regarding
the storage of attachments.These are stored in a seperate directory without
execute permission. Users will be able to attach any type of documents
including the executables. U can imagine what will happen, once this is
permitted. We r runnig a win2003 server. I need some help in securing the
system.

regards Lara

Top

Re: Folder Security by jeff

jeff
Thu Jul 14 06:28:31 CDT 2005

On Thu, 14 Jul 2005 15:27:40 +0530, "Lara" <lara@hotmail.com> wrote:

>We are developing one email application. Like every other email sites, the
>user will be able to send .receive mails.Now what my problem is regarding
>the storage of attachments.These are stored in a seperate directory without
>execute permission. Users will be able to attach any type of documents
>including the executables. U can imagine what will happen, once this is
>permitted. We r runnig a win2003 server. I need some help in securing the
>system.

I'm not sure what you're looking for in terms of help here, or how
this is related to IIS. You might want to look at basic Windows
administration functions and NTFS permissions. I'm also not sure why
there is an issue with attaching executables to a message, no other
email program in use has any problems with this.

Jeff

Top