All, This may seem inappropriate but my butt is on the line, so please read on. I have 2 developers who have domain admin rights in a windows 2000 environment. I discovered on Friday that these 2 have been creating a VPN tunnel to another companies network and having several machines ...more >>

I keep receiving this email? Dear friend , use this Internet Explorer patch now! There are dangerous virus in the Internet now! More than 500.000 already infected! File: patch.exe (12Kbytes) Is this a hoax? ...more >>

I seem to be getting a pop up that is titled "shit" and than it says "connection failure" i am not sure if this is a virus or if there is something wrong with my computer. Could someone be of assistance?...more >>

MS Partner this is the latest version of security update, the "September 2003, Cumulative Patch" update which eliminates all known security vulnerabilities affecting MS Internet Explorer, MS Outlook and MS Outlook Express as well as three new vulnerabilities. Install now to continue keeping ...more >>

Am new at this and would like to set my computer up so that my daughter can log on and have settings the way she likes and I can still have settings my way too. How is this done? Appreciate your assistance....more >>

I seem to be getting the same official-looking email from Microsoft but then receive a virus warning that it's infected with the W32/Swen@MM virus. I received this at least five times. (probably the same as Eric received)...more >>

Every time that i switch on my pc dhe home page changet by its self, and it gets me to porno sites. This is being a big problem for me and i don't know how to fix it. Every time that i switch on my pc i have to change the home page first and to delete same pictures that show on my desktop. ...more >>

The following link appears once a week at IE and directs straight to their download procedures. My daughter has started the process by accident I was able to manually get rid of it. I'm up on all securities and updates and also using Norton. Thought you might like to know, they implie that ...more >>

Hi, I installed a set of machines: - MachineA: Windows Server 2003 configured as domain controller, with Active Directory and IIS installed - MachineB: Windows Server 2003 - not on the MachineA domain, but on a workgroup (MISNET), and with Certificate Server (and IIS) installed. Certifi...more >>

Well, it seems that IE zones were involved in my weird authentication issues, after all. I didn't understand *really* what was happening, or why one server behaved differently from the other, however I was able to solve the problem by adding "*.mydomain.com" to the Local Intranet sites in IE. I ...more >>

I received this, and several e-mails like this, and can't tell if it and the exe file it contains is really from MS or a spoof. Somewhere on the MS site it says: beware of hoaxes; MS will not usually send complete files, but will direct you to the link you need. This is what the e-mail containe...more >>

Hello, I have Exchange, ISA and IIS (w2kserver)running on the same server and cannot get w3srv services to start. In Event Viewer I get: The service could not bind instance 1. The data is the error code. Any workarounds and still keep everything on one server? Thanks much, Ro...more >>

Microsoft Consumer this is the latest version of security update, the "September 2003, Cumulative Patch" update which eliminates all known security vulnerabilities affecting MS Internet Explorer, MS Outlook and MS Outlook Express. Install now to protect your computer from these vulnerabiliti...more >>

I just uninstalled/reinstalled IIS 5.0 on my Win2K machine. I thought I had a virus problem - web server kept hanging when being started or stopped, but it looks like it was just a conflict with Norton Personal Firewall (recently installed) and IIS. So I probably didn't need to uninstall. ...more >>

Dear Tech-Net-toons, What gives aye, mates? tired of abusing yourselves ? Well pull it back out. maybe you'll go to sleep afterwards. how much more money does Bill the Beast need ? And why are so many jerk-offs willing partners ? Think about it. W...more >>

Intranet using IIS6 running on Windows Server 2003 with Integrated Windows Authentication enabled. Workstations are WinXP SP1 with IE6 and all security patches. If logged in domain users access the web server using only the Netbios name (http://server) then they get straight in to the pages to wh...more >>

Hello All, Just doing a casual check on our win2ksvr, sp4 webserver running IIS5 and noticed hundreds of these: Source is W3SVC, event ID is 100: "The server was unable to logon the Windows NT account 'XXXX' due to the following error: Logon failure: unknown user name or bad password. The d...more >>

i am having problems with my internet, i cant't keep the homepage i choose and i keep on getting the same homepage: hotwebsearch that keeps on sneding me into sex sites and porn pop-ups. if you could help me i would be really glad because i can't work on the net with these conditions (the...more >>

We have recently purchased a windows 2003 standard edtion server with IIS 6.0. SQl server 2000. We will have some Java web applications run on it. We plan to use it as a standalone webserver, meaning not connected with our internal network. How can I implement security issue such as firew...more >>

The last time I looked at URLScan there were two versions...2.5 Baseline & 2.5 SRP. I tried to download both versions again today and there is only one version (2.5) there, which was updated in May of 2003. Is this a re-release of URLScan 2.5? What is the difference between this version ...more >>

Security Experts, I setup my own CA in my W2003 ADS. I got to the CertSrv site OK after everything was installed. However, I do not see any option to apply for a Digital Certificate used for Code Signing. I tried to duplicate the Code Sign template on the CA server (also an AD). However, when ...more >>

Just wondering, does IIS 6.0 support multiple SSL certificates for sites bound to more than one IP address? Or do I still have to create multiple sites even though they are exactly the same except for the SSL certificate served on each IP (and worry about the settings not being the same)? Jerr...more >>

I am in the process of transferring a number of websites from one server to a newer piece of hardware. As part of the build process once IIS was installed the server had IIS Lockdown run on it. Since then various live websites have been added to the hardware. I have now discovered that too tight...more >>

I to am getting emails that say they are coming from Microsoft and they include a patch for Internet Explorer to improve security and that over 500,000 computers have already been infected. Norton stops it but I want to know if it is legit or not?...more >>

I have a very bizarre problem with IIS 6. I have a site with Integrated security turned on and anonymous security turned off. When I attempt to access the page (ASPX with .NET Framework 1.0) I get prompted with a login box. If I enter my domain admin username and password, I get (after 3 atte...more >>

I'm working on an intranet and using NT Authentication to access a SQL (2000) database. Some of the pages need to access databases on other servers(2000 sp3) but for some reason IIS (5.0) seems unable to pass the user information across, by the time it reaches the other server i receive th...more >>

I am new at this and wonder if someone can help. I have a windows 2003 webserver with a .net application running on it, i have a sql database running behind the webserver. I want to be able to connect to it from anywhere, through the internet. But someone has told me that if i use microsft...more >>

Received email from Microsoft Security Center of Last Critical Update latest version Sept. 2003 Cumulative Patch. Said to download the attached file. When I tried, it said Patch 2447.exe is not a valid Win 32 application....more >>

Hello I have seen multiple posts about problems with XP, webdav and basic auth but none seem to provide a solution. The problem I have is that I have a website configured with 1 virtual directory with sub virtual directories. users don't have access to the 1st virtual directory but do ...more >>

I received an e-mail asking me to use the latest Microsft security patch, and while the name of the sender was "Microsoft Customer Support", the e-mail address seemed suspicious. The file didn't appear to have been created by Microsoft, as my computer gave me a warning that the publisher ...more >>

Anytime i want to logon to a particular intranet website i get the message: you are not authorised to view this page you do not have permission to view this directory or page using the credentials you supplied...more >>

Hi All, I have a ATL COM component to do error logging to the event log, it works fine when used outside of IIS. I get "Access is denied" error when the component is used from within a ASP page. The component registers a source in the Application log, which I thought had write permissions t...more >>

I have an IIS 6 web server, it is a member of a domain. The domain is setup to trust an external MIT Kerberos realm, user accounts have mappings to UPNs in the MIT Kerberos realm. I have users that need to authenticate from non-domain machines. I would like to use Basic Authentication over S...more >>

Sorry for reposting, but I need urgent help on this topic. I have an ASP page on a IIS 6 website, and I need to send e-mails using CDO. The website is running under a non-standard account (one different from IUSR_SERVERNAME), and I keep getting an access denied when trying to send messages. I ne...more >>

Hi, I created a user & assigned it to the group poweruser. I have specified this user as the anonymous user account when logging on to the web server. I am not using IUSR account because I need to read some values from the registry and IUSR account does not have enough previleges to re...more >>

I received an email which is an obvious scam. I would kike to know if anyone knows to whom I should report it?...more >>

I am not able to access the internet via IE after loggin on to my network using my standary microsoft vpn connection. I am still able to access the internet using my aol account, but IE will not connect. When I disconnect the vpn, IE works fine. I have a feeling this is a security issue...more >>

I have a few questions about IIS Authentication. I'm using Win2K and AD. 1. I've checked only Digest Authentication and I've set the user in AD to store the password in reversable encryption. When I access the page, I get prompted for my credentials. Is this normal? I thought that this a...more >>

Hi all I'm trying to setup two IIS6.0 behind a load-balancer having identical metabases retrieving data from a UNC path... that's do-able. But how about setting it up, so that logging is put into one file - preferably in the same UNC share (for log-parsing purposes)?!? possible? if so, how? ...more >>

I have a 2003 Domain Controller running IIS 6 FTP service. I seem to be failing to successfully create an FTP account. I created an account called FTP and gave it NTFS rights to access a folder c:\folder. But when the client connects I get a "530 User FTP cannot log in, home directory inacces...more >>

Somehow pornographic material is being embeded with different home pages and beyond. I can't get rid of it because it pops up and becomes part of the page I am viewing. If I do a search for the filename it can't be found yet it is there. please help me how do I get rid of this anoying pr...more >>

Hi, I have a development web server that I'd like to password protect. The server has a lot of folders in it that I want different people to be able to access. I'd like to be able to easily give access to different people / create new temporary users etc to the various different folders on...more >>

Hi, My IIS sit in a home environment without "AD", it is just pure workgroup environment. I will access IIS sit in my home network (ADSL) from my University network (with Proxy) using Visual Studio .Net. Sometimes I also access IIS using the Visual Studio .Net sit in the same machine with the ...more >>

What permissions does an user need to use CDO to send e-mails from an ASP page ? I'm running a website under a (very limited) user account different from the standard IUSR_SERVERNAME, and I keep getting "access denied" when I try to send e-mails. Massimo ...more >>

Cookie and domain problem hi, guys my website is on server say servera. i have a website on serverb now servera and serverb are on different domians... if serverb website creates a cookie on client pc with domain say ..xyz.com now if try to read the cookie on client pc when servera we...more >>

Hello, we are running a windows 2003 ent server with exchange 2003 ent iis 6.0 We currently use this as our IIS & exchange server on which on this IIS side we use asp scrips to pull information via a database. We have noticed that the past few days the unchanged files are reporting Serve...more >>

I'm running an IIS 6 web server. There's an ASP page that needs to send e-mails using CDO. When doing this, it gets an "access denied" error (id 80070005). I'm running the website under an account different than the default IUSR_SERVERNAME, and I don't want to make this user member of Domain Use...more >>

I've run Shields up (www.grc.com) to test a clients new Wingate Pro firewall on Win2000 server sp4. Ideally I'd like all ports to be in full stealth mode. The problem is that I'm seeing Port 1033 which I'm told is local netinfo port open. Now I know what you're thinking 'netspy' - but I don...more >>

Recently I received an E-mail from several people advising me that they may have unintionally send me a virus. The message told me to find jdbgmgr.exe and if it has a teddy bear icon I should delete it and send it to the recycle bin. When I looked at in the recycle bin it called it a M...more >>

does anybody know when a CS is installed on a machine in the network, how should it be defined for the client IE to be trusted? and also to be trusted for the web servers which are to receive certificate from CA server? thanks ...more >>

I am running Windows 2000 Server with IIS 5.0 and I am trying to setup/publish my website to IIS. I saved a copy of the site in the wwwroot of the site which erased the orginal files. I can not access my website by typing in the www infront of my domain but I can access it by typing in h...more >>

My user "scotts" is added as an administrator to every subweb that gets created. Is there a way to add another user of this type, or to copy that users rights?...more >>

I'm trying to get information on SSL and the various WMP versions. I have been able to determine, through Microsoft Support Online, that Windows Media Player versions prior to 6.4 have no support for streaming media through an SSL tunnel. I have not been able to determine this informatio...more >>

am setting up a virtual FTP site on my windows 2000 server. I can get the site just fine using anonymous authentication access, but I need it to prompt users to enter a username and password. I cannot get it to work that way. Any suggestions? Let me know, Thanks. ...more >>

I am using asp and adsi to interoperate with AD and wonder if anyone knows the reason why you need to use Basic Authentication instead of Integrated Security to authenticate properly to AD? I don't understand why when using integrated security, IIS cannot interact with AD under the securi...more >>

I get "the folder xxx is no longer available" all the time. This is not repeatable until it starts. i.e. I can set the same hyperlink 10 times and then on the 11th it will say the folder XXX is no longer available. I found some threads about this from June but there was no solution listed. Though...more >>

how do i set permission in IIS for a Process ID/Generic domain account to be used in accessing SQL server Thanks!...more >>

I downloaded explorer 6.0 from the Microsoft "Update" site yesterday. Today I get the message that "OE has denied access to unsafe attachments". In all cases I knew who the sender awas and need to access the attached files. Anyone know how to remedy this or can you tell me how to get rid o...more >>

I just migrated the database and web pages from one machine to another machine. The speed of the original web pages are faster than the current one. I think there is no problem on the web pages, but maybe the setting problem in IIS or SQL Server I wonder if anything to do on IIS or SQL Server ...more >>

How do you setup trusted security for an ASP, COM, SQL Server Application under IIS 5.0 and SQL 2000. I have disabled anonymous access under IIS. I have also setup ODBC to use trusted security. Component Services is set to use an account that DOES NOT have access to SQL Server. I can o...more >>

the server is automatically framing all html files. i heard that this is a security setting in the latest version of IIS. this is causing problems. how can i disable this feature?...more >>

Hi - I have written an application to add Users to a Domain. It works fine on IIS 5.0 but is not working on IIS 6.0. I suspect it has to do with permissions. IIS 6.0 resides on a member server. The application uses Integrated Windows authentication. I have created a custom Application Pool...more >>

I feel some attack going on in my server. How can i know attack happen to my iis server other than logs of IIS.Pls find the logs in w3svc1 . we given natting to the iis server.Any way make the server secure form outside world other than firewall . Can i go for ipsec .Pls give yo...more >>

Operating system : Windows XP Pro (English) Service : IIS 5.1 User : LocalAdmin (Local Administrator) Hello, I installed "IIS" on my computer only standard. I didn't change any option until I know what to do!! I studied but couldn't find the answer on the next problem : When I want to ...more >>

I keep having xrated items show up on my computer on my tool bar and favorites. When I go tools there are xrated toolbars showing up but even if not checked I can not figure out how to remove them. The same goes for favorites which xrate ones keep showing up. Thanks in advance...more >>

I changed my Intranet server, that has a Windows NT4 and IIS 4 installed, by a Windows 2000 Advanced Server with IIS 5. When I made that installation, the ASP pages that uses Integrated Windows Authentication was didn't work properly. My domain is a NT4 Domain. Before the change, I has the 3 au...more >>

I seldom am able to get attachments. Get mess. "oe has removed unsafe attachments" HOw the heck can I remove OE? Where is it? I need to get attachments sometimes!...more >>

Howdy! I have a damaged hard drive from an NT 4 server with secure server certificates for IIS. Some of the files are recoverable. Can someone tell me where IIS stores the certificates? I need to try moving them to a new W2K server. Thanks! -- "The only good SPAMMER is a DEAD SPAMMER." ...more >>

Using IIS with Integrated Authentication will give a pop up box with Username and password for some users and others will receive Username, Password, and Domain. What determines which box is displayed? I realize when only prompted for Username and Password you can enter Domain\Username. ...more >>

Our web server sits on the DMZ and replicates through the firewall to the PDC on our internal domain. This had been working flawlessly until the last security patch was applied on the 10th. Afterwhich the PDC can replicate to the web server but the web server cannot replicate to the PDC so...more >>

I'm trying to create a password lookup for users who'll authenticate to the network & be within an administrative group. I'm experienced w/ ADSI & VBScript, although I can't figure out how to access the LDAP for the password. Would anyone be able to point me towards a script or resource in wh...more >>

Hi, I have IIS 5.1 in Windows XP. I created a Virtual Directory (web site) . When I try to browse a page of the web site from another computer's IE, I got the error message: "You are not authorized to view this page" HTTP 403.6 - Forbidden: IP address rejected Internet Information Se...more >>

i keep haveing existing problems with my computer crashing and now i cant even get my passwords to work on anything . i think there is a problem with active x or i might have deleted by accident something i needed any suggestions on what i should do?????????...more >>

I am running Windows 2000 Server and IIS 5.0. I am running this on the same server and I was attacked by a spammer. Recently I used the IIS Lockdown tool and set it on the Static Website template and also used the Secure IIS 5.0 checklist to secure IIS so I spammers would not have access ...more >>

I have a IIS server that is NOT on our corporate domain. I have half the users on workstations logging in to the domain, the other half logging in to thier computers locally (outside of the domain). ALL users have a domain userId. SOME users connect to the IIS server through various shares...more >>

I am in the process of testing self-registration access to a secure subweb. I need to know where the registration data go save into....more >>

Does anyone know the password for the build in (IWAM_MACHINENAME) Account. I need to reset the Identity of a COM+ component. Regards. Sieu...more >>

My teenage son went into x land a picked up a dialer program on my machine. I cant get rid of it, I tried ad/remoove....Spybot...and deleting....I was told if i don't remove the dialer from the registry it willreturn with each reboot by my friendly aol tech,.,,unfortunately aol considers...more >>