IIS Security

Will installing Urlscan on IIS 4 & IIS 5 servers protect them from Trace/Track vulnerabilities by default or do I need to configure Urlscan to do this? Thanks! ...

I have a new Windows 2003 server with IIS.  I have set up the default web page with anonymous access.  Everything works fine for a day, but something happens overnight and my anonymous access quits working.  When I try ...

We have replicated Novell users from E-directory to MS Active Directory so that when the users login using NovelID on novel netware will get authenticated on IIS where only windows authentication is turned on. But doesn't seem to be work. Do i need to do anything to make it work? Or is ...

I'm trying to install MySQL on a Windows 2003 server.  But port 3306 doesn't seem to be open. When I give the netstat -an command, I don't get any information about port 3306 There is no firewall running on the machine.  So I'm assuming that port 3306 ...

We have many different files on our server ".dat", ".exe", ".template" plus other custom file extensions. All these files on IIS6 (Windows 2003) seem to give a 404 when trying to download them. We have the folder set to "None" execute permissions and it is set for ...

How can I get IP address of the requested client? When I am using request.servervariables('remote_addr'), I am getting public IP, but not the actual client IP. My application is hosted on public IP 202.63.107.242, and through IP ...

I am the server Admin for a webmaster who designed a site in Straight ASP using SQL Server 2000 SP4.  I am not a literate ASP programmer and the webmaster is not very experienced in this area either. So, I am soliciting some assistance with how to having non-informative ASP ...

The documentation states that the IUSR account by default has Read, Execute NTFS permissions to the web site folders: [link] I have done many default installations and it does not. It just has a Deny ...

I recently had a vulnerbility test conducted on one of web servers and the recommendation that was made to us that web server server type was detectable as Microsoft-IIS/6.0.  The conclusion was this is a vulnerabilty.  The ...

An outside company has informed us that our IIS 6.0 serve is below the current service pack level.  They are reporting that we are running IIS 6.0 - w2k3 build 3790.  Is there such a thing as a service pack for IIS and if so ...

Is it possible to create a secure SFTP site within SBS 2003 Premium? I've deployed the following - [link] and wanted to know if Windows had the same capability as opposed to inserting ...

Hi, I was using windows 2000 server before with IIS-5. Now i am just sifted to windows 2003 with IIS-6, In this i am facing problem with the ecurity settings when i am trying to run a web site which is working fine on the ...

We are planning on building an Intranet/Extranet for our payroll application. The idea is to use AD integrated IIS security for internal users to automatically identify and authenticate them on IE access, and use ADAM for clients. The architecture will involve an internally hosted web server that will be ...

Hi there, I am having trouble getting an ASP.NET web application to connect to another computer and passing the proper credentials and I hope someone can help me. I have a stand-alone Windows 2003 Server, ServerA, running as a Web Server ...