Security

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ IIS
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - Q811114 I have a laptop that everytime is does auto updates, it updates this file and will not stop. If you know of a way to get it corrected, please email cantaz@bellsouth.net Tag: Security Tag: 318400
  - 2
    - can i install on my servver just pop3 server HI .. can i install on my servver just pop3 server(without smtp server) that's at the same time support send and receive emails for my users , and what's the best way to controll the size for email-box for any user,ii can't find this in pope server ,does i do this just by quota. thank's Tag: Security Tag: 318393
  - 3
    - Server restarts unexpectedly Hi there, I'm getting a problem that my Windows 2000 server (SP4) regularly restarts itself when faced with a request for a web page that takes more than a few seconds to execute. I'm running IIS 5 with the .NET framework 1.1, accepting requests for ASP and ASP.NET pages. So far the server has restarted when triggered by requests for ASP. In the event log I get a "Server Restarted Unexpectedly" Error, Event ID 6008 but no other errors. I have around 500Mb disk space left on the Server which has been fine up til now. Any thoughts from anyone? Tag: Security Tag: 318392
  - 4
    - IIS 5 SSL stopped working SSL has stopped working for me in IIS version 5 (Win2K). I've tried everything, looked everywhere and can't figure it out. * I have reapplied SP4 * I created a new CCR and installed a new Verisign Cert. * I've tried importing from a known key that works on another server's IIS 5. Here is what SSL Diagnostics returns (the line "#WARNING: You have a private key that corresponds to this certificate but CryptAcquireCertificatePrivateKey failed" appears to be the problem - how do I fix this?): System time: Wed, 31 Dec 2003 06:32:39 GMT ModuleFileName: D:\Program Files\Microsoft\SSL Diagnostics\SSLDiag.exe OS: Windows 2000 Service Pack 4 IIS5 - World Wide Web Publishing (W3SVC) service is installed [ HKLM\System\CurrentControlSet\Services\InetInfo\Parameters ] CertChainCacheOnlyUrlRetrieval = True(default) CheckCertRevocation = False(default) CertChainCheckUsage = False(default) sspifilt.dll loaded into process 1240 (inetinfo.exe) [ SChannel Info ] CacheSize = 10000 Entries = 0 ActiveEntries = 0 [ W3SVC/2 ] ServerComment = Administration Web Site ServerAutoStart = True ServerState = Server started [ W3SVC/3 ] ServerComment = AMOS ServerAutoStart = True ServerState = Server started #Impersonated server account SSLCertHash = 81 6d 95 48 3c e8 15 21 a5 36 3d 43 b2 70 a9 0f 0b ec 37 51 SSLStoreName = MY #CertName = dev-amos.catalogcity.com #WARNING: You have a private key that corresponds to this certificate but CryptAcquireCertificatePrivateKey failed #Subject: C=US, S=California, L=Monterey, O=Altura International, OU=Engineering, OU=Terms of use at www.verisign.com/rpa (c)01, CN=dev-amos.catalogcity.com #Issuer: C=US, O="RSA Data Security, Inc.", OU=Secure Server Certification Authority #Validity: From 12/30/2003 4:00:00 PM To 5/14/2004 3:59:59 PM SecureBindings = :443: -- Jordan Zimmerman http://www.jordanzimmerman.com Tag: Security Tag: 318368
  - 5
    - Error for IIS When i clicking the start button, Error Message prompted out, It show "Unexpected error 0x8ffe2740", i have tried to uninstall the IIS and reinstall it back as well as restart my machine, but its stil the sam Can anyone help me to solve the error ? Tag: Security Tag: 318366
  - 6
    - IIS 6 and SEND_RAW_DATA Filters Hi, I am wondering what the proper approach is to implement ISAPI Filter SF_NOTIFY_SEND_RAW_DATA 'like' functionality in IIS 6. I have a filter, which is well tested and works fine in IIS 5, that won't load in IIS 6 under Worker Process Isolation Mode. This is because it makes use of both RAW_DATA notifications (READ and SEND)... The IIS 6 docs say that the READ_RAW_DATA functionality can be accomplished by the HSE_REQ_EXEC_URL support function... But what about the SEND_RAW_DATA functionality? What is the best approach to gain access to the outgoing data for any given request? Thanks, Mike. Tag: Security Tag: 318363
  - 7
    - Point to third party hosting service How do I effectively point client systems to a third party hosted website with the same domain name? i.e. xyz.com is the domain on our Windows 2000 server with AD and DNS. A third party "abc company" hosts www.xyz.com. The www host record in dns is set to the primary dns for pacbell (206.13.28.12). Sometimes the clients find the website and sometimes they don't. Is there a way to point directly to it? Thank you for any help. Tag: Security Tag: 318362
  - 8
    - iis restarting hi, I keep getting several error messages when restarting the wold wide web service and then after a couple of minutes it hangs. the machine is win 2000 with all latest updates and sp3. the errors in the event log are 7031 for all sevices dependant on iis admin and nntp 101 and also IISCTL 1 & 2. The error for the nntp says it can't find the "/" for virtual directory newsgroups but can find no record of this. have also scanned machine twice for viruses with two different virus programs but found nothing. any ideas??? Tag: Security Tag: 318356
  - 9
    - Can This be Done? I want to develop a desktop application consisting of ASP.NET pages using a local copy of SQL (MSDE 2000). I know that I can setup an install package using InstallShield that will copy the necessary files and Install an instance of MSDE and make sure the .NET Framework is installed but I am not sure about the Web Server piece of this. Is IIS always there on a Win XP system? Is there a way to check to see if IIS is installed? Are there license issues? Are there any articles describing how to do this? Wayne Tag: Security Tag: 318339
  - 10
    - Another ASP page problem I just did a clean install of win 03 enterprise server. In IIS i created a new website that uses all asp pages. I keep getting "The page cannot be found" errors. The HTML in the default site works without any problems. The ASP pages have not worked from the beginning. Its there anything extra i need to install to ge the asp to work? It was working on my 2000 server. the full error mesage is The page cannot be found The page you are looking for might have been removed, had its name changed, or is temporarily unavailable. Please try the following: * Make sure that the Web site address displayed in the address bar of your browser is spelled and formatted correctly. * If you reached this page by clicking a link, contact the Web site administrator to alert them that the link is incorrectly formatted. * Click the Back button to try another link. HTTP Error 404 - File or directory not found. Internet Information Services (IIS) Technical Information (for support personnel) * Go to Microsoft Product Support Services and perform a title search for the words HTTP and 404. * Open IIS Help, which is accessible in IIS Manager (inetmgr), and search for topics titled Web Site Setup, Common Administrative Tasks, and About Custom Error Messages. please e mail me at kinte@iieinc.com, thanks Tag: Security Tag: 318335
  - 11
    - How do I use IMSAdminBase (IIS Admin Base Object) in c# So let me break it down, Need: I need to programatically install SSL Certs in IIS 5.0 on Windows 2000. Result: Not possible via ADSI due to schema type mismatch issue Found IIS Admin Base Object: I have found http://support.microsoft.com/?id=313624#8 (HOW TO: Programmatically Install SSL Certificates for Internet Information Server (IIS)) which provides a c example. I would like to wrap this functionality in C# so I don't have to compile a binary and ship with my installer. I need to generate a type library so VS.NET can create a primary interop assembly. So the process as I understand is to: 1) get the iadmw.idl file 2) run the midl compiler to generate the type library 3) import the type library using .net tblimp.exe tool to generate interop assembly. The problem is I cannot locate the iadmw.idl file anywhere. I have the most recent Platform SDK installed with all the options and I have iadmw.h which contains the interfaces but no .idl file. I tried using the midl tool with the iadmw.h file but no luck. Can some please give me a push to how I can use the IMSAdminBase interface in C#? Thanks, Karl McGuinness Tag: Security Tag: 318332
  - 12
    - IIS blocked by Direcway Earthlink Satellite service: Does anyone know how to make XP Pro IIS compatable with Direcway Earthlink Satellite? From the browser http://localhost will bring up IIS when the Earthlink software is completely uninstalled. The only software on the computer for testing purposes is XP Pro with IIS installed and the Earthlink satellite software. An error message "Failure to connect to Web Server" is displayed when the satellit is connected. Earthlink tech. support will not let me speak to a supervisor and they say it isn't their problem. They say that XP Pro is the problem. Tag: Security Tag: 318331
  - 13
    - Cannot view .ASPX files on \\localhost\inetPub\wwwRoot I have Windows XP Professional with IIS 5.1. (I also have SQL Server 2000.) When I try to open a .ASPX file on http:\\localhost\InetPub\wwwRoot, I get the error "SERVER APPLICATION UNAVAILABLE". Tag: Security Tag: 318319
  - 14
    - Corrupt(?) Log Files About 1/3 of my log files have a long series of 'squares' in them. Usually, but not always, at the top of my log files (replacing the header) and often times there are many thousands of these square characters. I'm getting no real log data during this time (it can be hours), only this garbage. My site works fine during this time. Any ideas? -Joe Tag: Security Tag: 318318
  - 15
    - remote web admin Hi, Probably a simple one for someone. I'm a newbie to Windows 2003 Enterprise Server and need some help with the remote web admin. I've done a by-the-book install of the component and the web admin etc is working on my internal network. However to get it to work externally i need to change the port number it broadcasts on as i'm behind a cisco router thats locked down to only a few ports. Must be a simple way to change the broadcast port rather than going through the long winded and over unsafe opening of ports on the cisco router. Any help would be appreciated, thanks, Mike Tag: Security Tag: 318310
  - 16
    - IIS 6 jscript error -------------------------------------------------------------------------------- I have a third party program (CodeManager 2004) that uses javascript to open new windows to display information. I have the web site running but the buttons\tabs on the page that reference the javascript:Open Popup function does not work. I'm not sure if there is something in IIS 6 that I need to "Allow" or if this is a programming problem. By nature, I "Allow All" web extensions and turn them off one by one once the web site is functional. Any help is greatly appreciated! Tag: Security Tag: 318302
  - 17
    - IIS 5.1 connection I cannot get IIS 5.1 to connect, doing local work on home computer. My computer name changed when I connected to cable modem ISP. It has been some time since I used IIS, and my computer name changed again with new ISP (@Home to ATTBI to Comcast). IIS hangs when it tries to connect to new computer name. Also, I've read about port problems. Do what? TIA, Scott Tag: Security Tag: 318296
  - 18
    - Service Unavailable When trying to open a web page on a new install of IIS 6 I receive "Service Unavailable". IIS is running and it appears to be ok. Checked KB found Doc 816995 which questions the AppPollQueueLength. Did not seen to help. Thanks Tag: Security Tag: 318295
  - 19
    - Sharepoint -- "Service Unavaliable" Hello. Having what I assume to be a permissions problem with sharepoint and IIS. I used one of the knowledge base article http://support.microsoft.com/default.aspx?scid=kb;EN-US;823552 and a very similar one under technet - followed it to the letter and still having the same issue. What DOES seem to work is switching the appl pool to use the local system account but due to security reasons I'd rather not use that service. I was using the network service up until a few days ago but for whatever reason, stopped working. I've checked the IIS_WPG group and the STS_WPG group -- they both have network service and the two necessary IIS accounts within. Any ideas? Tag: Security Tag: 318293
  - 20
    - The page cannot be displayed... I partitioned my hard drive. It wasn't a real partition, as in adding a separate OS. I contracted some sort of [computer] virus, and it wouldn't start. So I created another instance of Windows XP.which added a 'Windows2' folder on my C drive. I ended up having to reinstall all of my software from the old partition (which I was able to see in the original 'Windows' folder). Nevertheless, since this fiasco, I've not been able to view 'http://localhost' or 'http://127.0.0.1' files. I was able to run Apache files, however. (Yes, I did stop the Apache Server from running). If you can provide any suggestion, please do. Tag: Security Tag: 318291
  - 21
    - Asp Pages wont work After recovering my server from a looping BSOD, ASP pages dont work. What can i do to fix this. thansk Tag: Security Tag: 318290
  - 22
    - DirectoryEntries.Find Method get Exception from HRESULT: 0x80005008 or NullReferenceException Hi All I'm writing C+ code to automate the IIS 6.0 (Windows 2003) website creation, deletion and properties modifications. Intenstion is all the configuration will be in a meta file and this program reads all the metadata and cofigure the web site auto-magically. I able to create te Website, assign virtual directory and aplication pool and so on. But when I want to modify or delete thw website, I need to find the website (context) to reset the properties or remove the site, the DirectorySerivces.Find() method returns above specified exception, don't know why. I tried all sort of alternatives, could not solve and I need some help on this. Interesting observation is, when the website is not there, Find() returns fine, but when the website is already there, it supposed to get the context, instead of it throughs the excpetion. Please see the code down below, Any help is greatly appreciated * * * Code * * using System using System.DirectoryServices using System.Collections using System.Runtime.InteropServices namespace ConsoleApplication /// <summary /// Summary description for WebSiteConfigure /// </summary public class WebSiteConfigur static string IIS_WEB_SERVER = "IIsWebServer" static string IIS_WEB_VIRTUAL_DIR = "IIsWebVirtualDir" static string IIS_APP_POOL = "IIsApplicationPool" static short SUCCESS = 1 static short FAILED = 0 / static string CANNOT_CREATE_SITE = "ERROR: Could not create website. " static string CANNOT_DELETE_SITE = "ERROR: Could not delete the specific site. " / protected string m_serverName protected string m_webSiteId protected string m_webSiteName protected string m_webSiteRefDir protected string m_webSiteBinding protected string m_virDirName protected string m_appPoolName / protected string m_adminPwd / protected string xmlCfgData / protected string m_webRootPath protected string m_w3svcPath protected string m_adminPath protected string m_newWebSitePath protected string m_newWebSiteRootPath protected string m_appPoolPath public WebSiteConfigure(String xmlContent xmlCfgData = xmlContent parse() initParams() private void parse( m_serverName = "localhost" m_webSiteId = "41519" m_webSiteName = "Tester" m_webSiteRefDir = "C:\\INETPUB\\WWWROOT\\WEBAPP1" m_webSiteBinding = ":9090:" m_virDirName = "TesterVirDir" m_appPoolName = "TesterAppPool" private void initParams( if ( m_serverName == null m_serverName = "localhost" m_webRootPath = "IIS://" + m_serverName + "/W3SVC/1/Root" / m_w3svcPath = "IIS://" + m_serverName + "/W3SVC" / m_adminPath = m_serverName + "\\Administrator" / m_newWebSitePath = m_w3svcPath + "/" + m_webSiteId / m_newWebSiteRootPath = m_newWebSitePath + "/ROOT" / m_appPoolPath = m_w3svcPath + "/AppPools" public void createWebSite( DirectoryEntry findSite = null findSite = webSiteExists() if ( findSite != null throw new Exception (CANNOT_CREATE_SITE + "Site [" + m_webSiteId + "] already exists.") DirectoryEntry w3svc = new DirectoryEntry( m_w3svcPath, m_adminPath, m_adminPwd, AuthenticationTypes.Secure ) DirectoryEntries sites = w3svc.Children //create a new sit DirectoryEntry newSite = sites.Add(m_webSiteId, IIS_WEB_SERVER); newSite.CommitChanges() public DirectoryEntry webSiteExists( DirectoryEntry w3svc = new DirectoryEntry( m_w3svcPath ) //DirectoryEntries sites = w3svc.Children return webSiteExists(w3svc.Children, w3svc.SchemaClassName) public DirectoryEntry webSiteExists( DirectoryEntries sites, String schemaClassName DirectoryEntry site = null tr site = sites.Find(m_webSiteId, schemaClassName) catch (System.IO.DirectoryNotFoundException e // Site not Found... site = null / An unhandled exception of type 'System.Runtime.InteropServices.COMException' occurred in system.directoryservices.dl Additional information: Exception from HRESULT: 0x80005008.* } return site; } public void deleteWebSite() { short deleted = FAILED; DirectoryEntry w3svc = new DirectoryEntry( m_w3svcPath, m_adminPath, m_adminPwd, AuthenticationTypes.Secure ); DirectoryEntries sites = w3svc.Children; DirectoryEntry site = webSiteExists(sites, w3svc.SchemaClassName); if ( site == null ) throw new Exception (CANNOT_DELETE_SITE + "Site could not be found in the web sites list. [" + m_webSiteId + "]") ; sites.Remove(site); } public void addServerProperties() { try { DirectoryEntry aWebEntry = new DirectoryEntry(m_newWebSitePath); aWebEntry.Properties["ServerBindings"].Value = m_webSiteBinding; aWebEntry.Properties["ServerComment"].Value = m_webSiteName; //TODO: Add other webserver properties. /* aWebEntry.Properties["LocalFileDirectory"].Value = ; aWebEntry.Properties["LogFileLocaltimeRollover"].Value = ; aWebEntry.Properties["LogFilePeriod"].Value = ; aWebEntry.Properties["LogFileTruncateSize"].Value = ; aWebEntry.Properties["AuthFlags"].Value = ;*/ aWebEntry.CommitChanges(); return; } catch(Exception e) { Console.WriteLine( e.Message ); } } static void CopyHere() { string serverName = "localhost"; string password = "A1a2A3"; string newSiteName = "Site1"; DirectoryEntry w3svc = new DirectoryEntry ("IIS://" + serverName + "/w3svc",serverName + "\\administrator", password,AuthenticationTypes.Secure); DirectoryEntries sites = w3svc.Children; DirectoryEntry newSite = sites.Add(newSiteName, "IIsWebServer"); //create a new site newSite.CommitChanges(); DirectoryEntry defaultRoot = new DirectoryEntry("IIS://" + serverName + "/w3svc/1/root",serverName + "\\administrator", password,AuthenticationTypes.Secure); DirectoryEntry newSiteRoot = defaultRoot.CopyTo( newSite); } public DirectoryEntry createVitualDirectory( ) { DirectoryEntry newvdir; DirectoryEntry root = new DirectoryEntry(m_newWebSiteRootPath); newvdir=root.Children.Add(m_virDirName, IIS_WEB_VIRTUAL_DIR); newvdir.Properties["Path"][0]= m_webSiteRefDir; newvdir.Properties["AccessScript"][0] = true; newvdir.CommitChanges(); return newvdir; } void createAppPool() { DirectoryEntry newpool; DirectoryEntry apppools = new DirectoryEntry(m_appPoolPath); newpool=apppools.Children.Add(m_appPoolName, IIS_APP_POOL); newpool.CommitChanges(); } void assignAppPool(DirectoryEntry newvdir) { object[] param={0, m_appPoolName, true}; newvdir.Invoke("AppCreate3", param); } /// <summary> /// The main entry point for the application. /// </summary> [STAThread] static void Main(string[] args) { Console.WriteLine("Starting ..... "); WebSiteConfigure webConfig = new WebSiteConfigure(""); //webConfig.deleteWebSite(); webConfig.createWebSite(); webConfig.addServerProperties(); DirectoryEntry vSite = webConfig.createVitualDirectory(); webConfig.createAppPool(); webConfig.assignAppPool(vSite); // Console.WriteLine("Completed ..... "); Console.ReadLine(); } public DirectoryEntry CreateVDir (string vdirname, string realDir) { DirectoryEntry newvdir; DirectoryEntry root = new DirectoryEntry("IIS://localhost/W3SVC/1/Root"); newvdir=root.Children.Add(vdirname, "IIsWebVirtualDir"); newvdir.Properties["Path"][0]= realDir; newvdir.Properties["AccessScript"][0] = true; newvdir.CommitChanges(); return newvdir; } static void EnumIISProps() { //string serverName = "localhost"; //string password = "<Administrative_Password>"; string path = "IIS://localhost/w3svc/1"; DirectoryEntry entry = new DirectoryEntry(path); Console.WriteLine("Enumerating properties for " + path); foreach (string propName in entry.Properties.PropertyNames) { Console.WriteLine(propName); foreach (object value in entry.Properties[propName]) { Console.WriteLine("\tname = " + propName + ", value = " + value); } } Console.WriteLine("\nFinished enumerating properties for " + path); } public static void PrintKeysAndValues( PropertyCollection myList ) { try { IDictionaryEnumerator myEnumerator = myList.GetEnumerator(); Console.WriteLine( "\t-KEY-\t-VALUE-" ); while ( myEnumerator.MoveNext() ) Console.WriteLine("\t{0}:\t{1}", myEnumerator.Key, myEnumerator.Value); Console.WriteLine(); } catch (Exception e ) { Console.WriteLine("Exception: " + e.Message); } } } } Tag: Security Tag: 318280
  - 23
    - Buffer overrun? I keep getting MICROSOFT VISUAL C++RUNTIME LIBRARY BUFFER OVERRUN DETECTED. Can someone please help? Tag: Security Tag: 318273
  - 24
    - HTTP 500 - Internal server error with IIS on Win2003? I am in the process of migrating an ASP application (built using Visual Interdev 6) from a win NT server to win2003. I keep getting the HTTP500 error message when attempt to run specific pages. I don't get this error with a simple test page that sends "Hello". Are there any specific issues with asp and win2003? Tag: Security Tag: 318272
  - 25
    - IIS and Win2K pro First, I installed IIS from safe mode b/c it would not install when booting normally. I think Norton Internet Security 2003 have something to do with it. Now that I have IIS installed, I went to Personal Web Manager to create my site and it just hangs. PWS started up but everything i attempt to do, I get a message that it is busy. Can anyone help? Thanks, Tag: Security Tag: 318271
- Next
  - 1
    - HTTP 500 - Internal server error Internet Explorer I am in the process of migrating an ASP application (built using Visual Interdev 6) from a win NT server to win2003. I keep getting the HTTP500 error message when attempt to run specific pages. I don't get this error with a simple test page that sends "Hello". Are there any specific issues with asp and win2003? Tag: Security Tag: 318270
  - 2
    - world wide web publishing service cannot be started automatically Hi! Hope some of you have seen this weird problem before. I have IIS running on Win2000 server, somehow the startup type of WWW Publishing service is always "disabled" -- If I change it to "manual" or "automatic", the next time when server reboots, it's changed back to "disabled". As a result, the service never starts up automatically after server reboot. I also tried changing the startup type in registry, but it didn't work either. Both WWW Publishing and SMTP are dependent on IIS Admin service. However, SMTP and IIS Admin can be set to "automatic" and they start up fine after server reboot. Any help would be greatly appreciated! Thanks. Tag: Security Tag: 318267
  - 3
    - IIS 5.1 XP Pro wont display default page. ( all details here. ) This problem is posted all over the web but no one appears to have a solution. (1) The server is running. (2) I have Typed the address in correctly. (3) I am logged in as the administrator. (4) I was able to ping the server with the computer name anad the IP address. (5) I am on a new Dell using MacFee virus scan, firewall, etc... (6) Ran netstat, there is only one entry listening on port 80. Still tried changing the port ot 8080 with no results. (7) re-Installed IIS. (6) Below is the Log from the Wfetch utility. Can someone interpret this response? Reusing existing connection (source port 3171)\n REQUEST: **************\n GET /default HTTP/1.1\r\n Host: localhost\r\n Accept: */*\r\n \r\n RESPONSE: **************\n Aborting the current request... finished. (7)Running out of ideas, anyone got anything new? Tag: Security Tag: 318266
  - 4
    - IP Address as subweb I have a web cam that is it's own web server with it's own IP address (internal and external). I would like to set it up to be a subweb to the main web site so you don't have to type an ip address to get to it. I set up an dnz for it but that only works through the intranet. i.e. http://webcam.servername.com. Is it possible to get it as http://servername/webcam. I also tried to set up a new virtual web, but it's looking for a folder or another computer. It will not let me redirect to the webcam. Any help please. Thanks, Jason Tag: Security Tag: 318265
  - 5
    - logfile cleanup I'll bet this is a FAQ - my apologies. I need a script to cleanup logfiles on my IIS 4 & IIS 5 servers. Can one of you point me towards a script that'll help me manage it? \\Greg Martin gmartin@gmartin.org Tag: Security Tag: 318264
  - 6
    - IIS Error popups on server I am remotely editing and running ASP pages with IIS. Whenever I get an error popup, it pops up on the server not on my local machine. This locks IIS and I have to restart IIS as I dont have remote control of the server to manually clear any error messages. Is there a property in IIS that will either cancel these messages or simply log them to a text file? Any suggestions would be greatly apreciated. Sorry I haven't stated versions etc. only I am not so shure without access to the server. Thanks, Oli Tag: Security Tag: 318258
  - 7
    - ASP-IIS5.0-Oracle I am running Windows 2000 Pro, IIS 5.0 and trying to connect to an Oracle 8.1 database that resides on a different machine in an intranet. Prior to applying a security patch to W2k, the ASP application worked fine. After applying the patch, I get an Access Violation on every page that attempts to connect to Oracle using the msdaora Provider, or any provider. Does anyone have any ideas. Any help will be greatly appreciated. Thanks, Jose Tag: Security Tag: 318257
  - 8
    - IIS (Partition) I partitioned my hard drive because it wouldn't boot correctly. Now, I am not able to view anything on IIS, nor my JAVA stuff, ColdFusion, etc. Where did everything go? Please help. Jesse Tag: Security Tag: 318252
  - 9
    - IIS 6 Hi All, 1. Is there IIS 6 separate installation that is not a part of Server 2003 ? 2. Is it possible to run IIS 6 under XP ? 3. What ASP .NET version can run under IIS 6 and IIS 5 ? Currently I'm developing ASP .NET application under IIS 6 (Server 2003) but since our software should be integrated at third party web sites I'd like to create some generic version for IIS 5 and 6, or probably I'll have to supply different versions. Thanks in advance ! Tag: Security Tag: 318233
  - 10
    - Why does I get an red error sign to my default website! hii I am using win2k professional I always get this error sign near my DEFAULT website.. or sometimes I also get a red errror singn next to my Virtual Directory also..! how can I avoid that please tell me LAst time I had to re-install my IIS I am using my IIS for 2 clients only thats it..! Tag: Security Tag: 318232
  - 11
    - IIS Manager Failed Hi, I'm having a trouble with my IIS 5.0 on windows 2000 with exchange 2000 installed. After we have crashed, we restore the machine using system state backup and restore the exchange components The core function of the server working properly. But The IIS Manager could not be open, the error message displayed this message bok "the system could not find the path specified" Please advised, Regards, Arief Pribadi Tag: Security Tag: 318231
  - 12
    - Can't get IIS to show pages I have Windows XP- Pro with IIS installed and running. I have tried to access the http://localhost . My instructions show that that url should bring up a IIS page. Nothing happens, it just sits and sits and then stops. I have tried making an html page, putting it into the wwwroot directory and looking for it with the browser and it never finds it. No real error messages, just sits there and never finds it. Thanks, Fred Tag: Security Tag: 318215
  - 13
    - After changing web pages, IE6 still displays old page...for days I have been actively updating my web sites pages, and when I use IE6 to view them after uploading them to the site, it displays the last version of the page I viewed in my web browser (this is not isolated to one browser or computer). It will continue to display the last version I viewed until I manually click the "refresh" button in the browser, and I mean for days. I was testing on one machine and browser so I would know when I resolved the issue, and it continues to display the last version of the page that I viewed after hitting refresh. I have been playing with the "Content Expiration" settings on the "HTTP Headers" tab in the properties of the site with no change. Currently I have it set for "Expire Immediately" and you still need to manually click "Refresh" if you've ever viewed the page before. I would appreciate any help anyone can lend in this matter. I'm finding it very frustrating. Tag: Security Tag: 318214
  - 14
    - W3SVC Error Code 36 Dear all : I've try all the optins here from the newsgroup but the error still remain, the IIS server can't process .ASP page at all. Before the computer reboot after instill the SP4 ererything was OK. Pls help me!! I've try the options below : http://support.microsoft.com/?id=309051 and those I can found in this newsgroup but the problem just won't go off???? Snoopy Tag: Security Tag: 318210
  - 15
    - iis5.0 for upgrade iis6.0 i have all sites in iis 5.0 and i want upgrade for win2003Server how i upgrade for another computer with a tools software ? thanks Vivian Tag: Security Tag: 318209
  - 16
    - (TIP) Does not work : IIS HTML ADMIN with SP4 on W2KServer I tried desperetly to find a solution to my pb HTML IIS ADMIN TOOL did not work on my Windows 2K Server. This was due to SP4 In fact when a I used to click on "proporties" in the browser for any item (for example IISADMIN) nothing was happening After exploring many alternatives, I red some topics on the web regarding issues with SP4. So I decided to reinstall W2K without SP4. Now it works Should I go for SP3 ?? Tag: Security Tag: 318205
  - 17
    - Virtual folders in IIS 5 My problem is when I try to reassign the path of a virtual folder to anything other than the C drive on the web server. If I reassign it to a folder on another drive (the folder has the exact same rights and permissions) it will disappear from the web. If I change it to any other folder on C (permissions don't seem to matter) it will come back. If I try and create a new virtual pointing to another drive, it never appears on the web at all. Stopping and restarting services make no difference, nor does restarting the machine. This virtual is on the main web (default web site). What do I need to do to make this work? Tag: Security Tag: 318199
  - 18
    - Is it possible to change Log settings? IIS 5 on w2k server sp4. I would like to programmatically adjust/change log settings in my websites in IIS. Is it possible to do this? For example I should change from "Daily" to "Monthly" and/or remove s-port from Logs...and so on... Any help much appreciated -- Fabrizio Maccarrone -- YAMSSQLU (Yet Another MSSQL User) --- Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.556 / Virus Database: 348 - Release Date: 27/12/2003 Tag: Security Tag: 318194
  - 19
    - IIS, C# and saving Excel problem Here is the problem: I have an IIS installed on my computer and a web site. When you click on the button on that website, it should save excel file. If I do it, it works fine ( but I'm an administrator on my own machine). If someone else try that same thing (calling the web site through URL), they get a message: "Error: Microsoft Excel cannot access the file '\\network_drive\some_folder'. There are several possible reasons: ? The file name or path name does not exist. ? The file you're trying to open is being used by another program. Close the document in the other program, and try again. ? The name of the workbook you're trying to save is the same as the name of another document that is read-only. Try saving the workbook with a different name. Line: Microsoft Excel" I presume there is a permission issue, but I don't know where to look. I already have IIS on Integrated Windows authentication and web.config file has <identity impersonate="true" />. Why am I the only one who can do anything? Tag: Security Tag: 318190
  - 20
    - ASP page to only show files ending in .RPT I have a great component from Seagate Software that runs Crystal Reports on the server and passes them down to the web clients. This works great, but every time I add a report to my list I have to add a link to the report on my web page which is just a directory listing of only file that end in .RPT As an example, I have the following directory list on my server C:\InetPub\wwwroot\Mysite\Report1.RPT C:\InetPub\wwwroot\Mysite\Report2.RPT C:\InetPub\wwwroot\Mysite\Report3.RPT C:\InetPub\wwwroot\Mysite\Report4.RPT C:\InetPub\wwwroot\Mysite\Report5.RPT C:\InetPub\wwwroot\Mysite\Report6.RPT C:\InetPub\wwwroot\Mysite\Report1.dat C:\InetPub\wwwroot\Mysite\Report2.dat C:\InetPub\wwwroot\Mysite\Report3.dat C:\InetPub\wwwroot\Mysite\Report4.dat C:\InetPub\wwwroot\Mysite\Report5.dat C:\InetPub\wwwroot\Mysite\Report6.dat The web page for mysite.com looks like this the the web address is in {} Report1 {http://www.mysite.com/Report1?=init=actx} Report2 {http://www.mysite.com/Report2?=init=actx} Report3 {http://www.mysite.com/Report3?=init=actx} Report4 {http://www.mysite.com/Report4?=init=actx} Report5 {http://www.mysite.com/Report5?=init=actx} Report6 {http://www.mysite.com/Report6?=init=actx} I would like it so when I drop in another report into the directory (Report7.rpt), this will automatically appear next time the page is visited without me having to manually add a link to Report7.rpt Tag: Security Tag: 318188
  - 21
    - Trying, but not succeeding, in getting IIS to work on W2K This is a multi-part message in MIME format. ------=_NextPart_000_0028_01C3CE2A.7E10BBC0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable OK, when I installed W2K Pro, I did not install IIS because I was = planning on working with Apache2, plus perl and SSL, PHP and a number of = other things. And, indeed, for some of my projects, this is essential. = However, I now have a project that appears to require IIS because it = involves ASP implemented using VBScript and Apache uses perl for the = same purpose. So, today I installed IIS, and the Add/Remove applet, and its Add/Remove = Windows components appeared to work fine. However, Personal Web Manager = tells me that my home page is available on http://ted/, but when I go = there using MS IE, I get:=20 HTTP 500 - Internal server error=20 Internet Explorer=20 However, I copied the index.html file from the J2EE Tutorial to the = C:\inetpub\wwwroot directory, and IT works fine (although it doesn't = have any functionality because I didn't copy the rest of the html = documents used for that tutorial) when I go to http://ted/index.html. What is more annoying still is that I can't view any of the = documentation for IIS because, when I do so (by selecting the Help item = on the main menu of Personal Web Manager), I get: HTTP 404 - File not found Internet Explorer=20 And even more annoying still is that this seems to be affecting how = Interdev behaves. While it may be that some of my problem with Visual = Interdev is due to the fact I've not used it, I would expect that if I = use View | View with Browser, I should see what a given ASP file would = produce, and see it in MS IE. But every time I've tried, IE immediately = throws me back to Visual Interdev, so that I only ever see the source = code. (I have the enterprise edition of Visual Studio 6 installed). Even more annoying is that neither will start when the other is running. = Surely it is possible to have IIS working with one or two IP addresses = and Apache working with a different one. It is easy enough to tell = Apache to listen on a given IP address (or set thereof) only, but how do = you tell IIS to listen only to a given set of IP addresses. Or is it a = question of MS so crippling W2K Pro that only one can be active at the = same time? I have to have both, not because I am really hosting = multiple sites, but because I am doing development work and others may = be running one or the other. Can someone take me step by step through the testing and configuration = of IIS (and give a checklist of things to verify that Windows installed = it correctly, with instructions on what to do if it didn't) so that the = asp files work as intended and I can see the output of asp files = correctly when coding within Interdev? One other thing: IIS insists on installing itself on C:. My C: drive is = rather limited in space, and I would prefer to put it on h:, which has = plenty of space. Is it possible to move it, in its entirety, or am I = stuck with moving only the WWWroot directory? Any help would be appreciated. Thanks, Ted ------=_NextPart_000_0028_01C3CE2A.7E10BBC0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1276" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY> <DIV><FONT face=3DArial size=3D2>OK, when I installed W2K Pro, I did not = install IIS=20 because I was planning on working with Apache2, plus perl and SSL, PHP = and a=20 number of other things.  And, indeed, for some of my projects, this = is=20 essential.  However, I now have a project that appears to require = IIS=20 because it involves ASP implemented using VBScript and Apache uses perl = for the=20 same purpose.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>So, today I installed IIS, and the = Add/Remove=20 applet, and its Add/Remove Windows components appeared to work = fine. =20 However, Personal Web Manager tells me that my home page is available on = </FONT><A href=3D"http://ted/"><FONT face=3DArial = size=3D2>http://ted/</FONT></A><FONT=20 face=3DArial size=3D2>, but when I go there using MS IE, I get: = </FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>HTTP 500 - Internal server error = <BR>Internet=20 Explorer </FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>However, I copied the index.html file = from the=20 </FONT><A style=3D"COLOR: #666699; TEXT-DECORATION: none"=20 href=3D"http://ted/index.html"><FONT face=3DArial size=3D2>J2EE=20 Tutorial</FONT></A><FONT face=3DArial size=3D2> to the = C:\inetpub\wwwroot=20 directory, and IT works fine (although it doesn't have any functionality = because=20 I didn't copy the rest of the html documents used for that tutorial) = when I go=20 to </FONT><A href=3D"http://ted/index.html"><FONT face=3DArial=20 size=3D2>http://ted/index.html</FONT></A><FONT face=3DArial = size=3D2>.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>What is more annoying still is that I = can't view=20 any of the documentation for IIS because, when I do so (by selecting the = Help=20 item on the main menu of Personal Web Manager), I get:</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>HTTP 404 - File not found<BR>Internet = Explorer=20 </FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>And even more annoying still is that = this seems to=20 be affecting how Interdev behaves.  While it may be that some of my = problem=20 with Visual Interdev is due to the fact I've not used it, I would expect = that if=20 I use View | View with Browser, I should see what a given ASP file would = produce, and see it in MS IE.  But every time I've tried, IE = immediately=20 throws me back to Visual Interdev, so that I only ever see the source=20 code.  (I have the enterprise edition of Visual Studio 6=20 installed).</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Even more annoying is that neither will = start when=20 the other is running.  Surely it is possible to have IIS working = with one=20 or two IP addresses and Apache working with a different one.  It is = easy=20 enough to tell Apache to listen on a given IP address (or set thereof) = only, but=20 how do you tell IIS to listen only to a given set of IP addresses.  = Or is=20 it a question of MS so crippling W2K Pro that only one can be = active at the=20 same time?  I have to have both, not because I am really hosting = multiple=20 sites, but because I am doing development work and others may be running = one or=20 the other.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Can someone take me step by step = through the=20 testing and configuration of IIS (and give a checklist of things to = verify that=20 Windows installed it correctly, with instructions on what to do if it = didn't) so=20 that the asp files work as intended and I can see the output of asp = files=20 correctly when coding within Interdev?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>One other thing: IIS insists on = installing itself=20 on C:.  My C: drive is rather limited in space, and I would prefer = to=20 put  it on h:, which has plenty of space.  Is it possible to = move it,=20 in its entirety, or am I stuck with moving only the WWWroot=20 directory?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Any help would be = appreciated.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Thanks,</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Ted</FONT></DIV></BODY></HTML> ------=_NextPart_000_0028_01C3CE2A.7E10BBC0-- Tag: Security Tag: 318186
  - 22
    - date format - IIS when use a recorset for data in mysql show the date in american format. Its possible convert to british format ? With the configuration in IIS ? I try change the Windows 2000 Server format but not sucessful. thanks any ideas Vivian Tag: Security Tag: 318184
  - 23
    - IIS6 fails to start - error 2147500034 (0x80004002) All of a sudden IIS will not start up. I get the following events in the Event Viewer every time: 1- Event Type: Error Event Source: W3SVC Event Category: None Event ID: 1063 Date: 12/29/2003 Time: 4:02:10 PM User: N/A Computer: MEEKI Description: The World Wide Web Publishing Service encountered a failure requesting metabase change notifications. The data field contains the error number. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: 0000: 02 40 00 80 .@. ----------------------------------------------------------- 2- Event Type: Error Event Source: W3SVC Event Category: None Event ID: 1036 Date: 12/29/2003 Time: 4:02:10 PM User: N/A Computer: MEEKI Description: A failure occurred while initializing the configuration manager for the World Wide Web Publishing Service. The data field contains the error number. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: 0000: 02 40 00 80 .@. ----------------------------------------------------------- 3- Event Type: Error Event Source: W3SVC Event Category: None Event ID: 1005 Date: 12/29/2003 Time: 4:02:10 PM User: N/A Computer: MEEKI Description: The World Wide Web Publishing Service is exiting due to an error. The data field contains the error number. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: 0000: 02 40 00 80 .@. ----------------------------------------------------------- 4- Event Type: Error Event Source: Service Control Manager Event Category: None Event ID: 7024 Date: 12/29/2003 Time: 4:02:10 PM User: N/A Computer: MEEKI Description: The World Wide Web Publishing Service service terminated with service-specific error 2147500034 (0x80004002). For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. ----------------------------------------------------------- Microsofts' website is useless, you would think that somewhere they would have information on errors produced by there own software! Does anyone have a clue what is going on here? flaneryrejr@ornl.gov Tag: Security Tag: 318182
  - 24
    - W3SVC stops I am having some problems with my web server. IIS 5 with the .net framework installed. About 200 domains or so. The problem is that the web service keeps stopping, sometimes the ftp service stops too. Restarting the service works sometimes but sometimes the server requires a reboot to work. I find 2 different errors in the event logs but can not make sense of this: Out of process application '/LM/W3SVC/75/Root' terminated unexpectedly. For additional information specific to this message please visit the Microsoft Online Support site located at: http://www.microsoft.com/contentredirect.asp. The World Wide Web Publishing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: No action. I did search the knowledge base and did try a few of the suggestions but the problem continues. Any suggestions? -- Tag: Security Tag: 318181
  - 25
    - login problem Hello all ~ I am running a Win2K SP4 server with IIS 5.0 installed. I have FP 2002 server extension installed also. When I go to FrontPage or any other editing software to edit my web page, I am not being prompt for a username/password login to edit my webpage. It just downloads the default page, without any folders. I've checked all server extension permissions, but I must be missing something. Any help will be greatly appreciated. Tag: Security Tag: 318180

I have been told that there is a security threat to a network when running IIS personal web server. I am using PWS to test some pages that I am building. I did not know that there was a risk. Can some one help me understand what the risk is?

Top

Re: Security by Jaxxon

Jaxxon
Wed Dec 31 12:46:08 CST 2003

One of the biggest threats back in the IIS4 and IIS5 days, was that people
would leave the default website running with anonymous access to it. The
intruders would then issue a few commands to get cmd.exe to launch and
execute thier code.

"SanjaySardar" <sanjay.sardar@ferc.gov> wrote in message
news:C78558B5-74D8-496E-AC3D-669C748DF27B@microsoft.com...
> I have been told that there is a security threat to a network when running
IIS personal web server. I am using PWS to test some pages that I am
building. I did not know that there was a risk. Can some one help me
understand what the risk is?

Top