I am running Windows 2000 Server with IIS 5.0 and I used the instructions on a document named secure IIS 5.0 checklist to stop a problem with a spammer that I had. These procedures corrected the problem but now I can't get into my website without entering a user name and password. This c...more >>

Hi there, I have an ASP page, which have to connect to an SSL server that requires a client certificate, but I get the following error: Erroror Type: msxml3.dll (0x80072F0C) A certificate is required to complete client authentication /test/test.asp, line 34 Here goes my code: const DQ...more >>

Here's a summary of the troubles I'm experiencing, of which I've been talked in a previous thread. Now I'm posting again explaining all about my security-related configuration, so maybe someone can help me out of this. Here's the full story. I wanted to have my websites on another drive than the...more >>

I have the Millenninum edition and my computer downloads the cumulative patch for Internet Explorer 6 #822925 over and over again. I install it over and over and it continues to download and install. I don't notice anything else happening that I would suspect that I have a virus. Can an...more >>

I have a web interface for a document management system running on IIS5. It installed itself under the Default Web Site. We have employed an SSL certificate and now users must preface the URL with 'https' rather than 'http'. Is there any way to automatically redirect users to the same website ...more >>

This happens a lot to my databases. I store them at the root of my developing files, i.e. c:\My Projects\Proj1\database.mdb. Randomly, the security settings on this database will drop to the basic secutiry, myself and SYSTEM. I need IUSR on it so I can access it through my ASP pages... I get err...more >>

I have a web site running on IIS 5.0. I am using certificates to authorize the users for the secure part of the site. I have four workstations that when I go to install the client certificates from the CA, I get this message: The Certificate cannot be installed because of a problem wi...more >>

I'm having problems getting a Form (ASP script) to run on our website. Getting this error message- "HTTP 500 Internal server error". Here is the catch if I use a domain admin account in IIS for the anonymous web account it works fine??? Also it didn't work with the default Anonymous Web Us...more >>

How do u put the custom iislockd.ini on the command line. What parameter u have to use for iislockd.exe so that it looks at the custome iislockd.ini for quiet installation. i have read the runlockdunattended.doc but some how i am missing in terms of parameters to run it in unattended....more >>

Hi, I'm trying to upgrade from a server 2000 domain to a non-domain server 2003 environment but IIS is holding me back. It seems that when I create a virtual directory on another server users cannot see the files. If I have a domain this is no problem. I have tried changing all security/p...more >>

I have a very strange problem with a Windows 2003 webserver. The machine is part of a (2003) domain which we'll call "mydomain.com", and DNS is so configured: frontend.mydomain.com -> 192.168.42.20 www -> frontend.mydomain.com test -> frontend.mydomain.com The webserver is running two site...more >>

I have a FTP server at my Nt4.0 SBE, and IIS 4.0 on it. I now want to setup different folder for different company to download or upload the files to those unique folder, but I dont' want those company to see each other folder on my FTP site. Is that anyway can setup a structure on my FTP ...more >>

I downloaded Antology virus blocker but now have doubts about them. Does anyone know of them, & if so, are they a trusted program?...more >>

I wanted to know what was last weeks events that happend in microsofts software that allowed worms and viruses to enter into the system. I am writing a paper on it for school. I would be more than happy to know if there was an artical from last week that i can referance so that it would ...more >>

I have set up a couple of webdav folders and would like the users to use SSL to keep there passwords encryped. We are a small university and of such a small use of a certificate I would rather generate my own, especially since it will mainly be used by only a few faculty. I know I need to ...more >>

I've discovered a new hack that isn't 404'ing when they dir my drives. I don't know if they are succeeding in some way, as they are not getting a 404. They try to copy cmd.exe to cmd2.exe, but it doesn't look like that worked (cmd2.exe not on the machine anywhere). I don't have all th...more >>

I am developing an web site. When user request for the site, i like to find out if the request is coming from inside our organization or out side our organization. Within the organization means within the domain. We have ip ranges within the organization. I will be using asp and IIS 5.0. ...more >>

Can someone point me to a link that shows how to change the IIS banner? Thanks, Ferdie ...more >>

Hello, I wanted to know if anyone could assist me in the operation of getting certain pages to be secured by SSL and then back to HTTP when leaving. I have been trying for about 3days now and I did read all the articles before posting but no luck. I have tried to change the 404.3 error ...more >>

In IIS security tab, it is possible to deny certain IP numbers. Is there a way to import these values from some database? For example at the moment, I read daily IIS logfiles and have every day several IP numers what try things what are restricted by URLScan (running cmd.exe etc.). Every...more >>

I have a web site with a few hundred pages, mainly active server pages, set up in a tree structure. Some of the files and directories allow anonymous access, some use integrated Windows authentication, some are set up for both. I'm looking for a tool which will work its way through all of thes...more >>

when installing download such as windows automatic update should i turn off firewall and anti virus...more >>

Hi I have a webapplication running on Windows Server 2003, IIS 6.0, with CGI-dlls combined with ASP.Net components. I use ASP.Net to access files on a IBM iSeries server (IFS). I had no problems running my app on a Windows 2000 Server with IIS 5.0. I created a local user account with the s...more >>

I am sure this answer is simple and staring me in the face. However, I have yet to find it. I am running IIS on a Windows 2003 server. I have web sites hosted on this server allowing access through FTP basic authentication. The users are able to get to the web directory through an FTP clie...more >>

We tried to migrate from the Linux platform to the Windows. We used perl scripts for public access: quizzes and etc. But now, after migrate, Windows Server demands the authentication when user try to exec any CGI script. Why? Thanks, for your answer....more >>

I received an email with "Last Network Security Patch" in the subject. It has an attachment and says it is from Microsoft Corporation Internet Security Division <irvepgs_608521@support.msdn.com>. The email says it is a security patch. Is this really for MS or is this a virus? Thanks...more >>

I was viewing my logs and saw this and do not know what it is. Does anyone else know? 150 winnt/system32/cmd.exe requested Thanks Joseph...more >>

I have been attempting to download the critical updates for 5 days.... it stalls and fails. it stops at the last security download for winddows xp 819696. tried to e- mail microsoft... what a joke. i am frustrated and do not know how to proceed....more >>

I am not sure I am in the correct place or not, but I downloaded microsoft exployer over my already internet explorer and now I do not get a security scan, the pictures are foggy nothing works like it use too. How can I uninstall internet explorer and reinstall it so I can have my email a...more >>

It's funny how billy can brag and ramble on and on about the =0A= securiy of winblows and how much daddy LINUX stinks, but if =0A= that's the case, why did M$ had to hide behing LINUX during the =0A= last DDoS? =0A= =0A= Hey, you're entiled to know: =0A= http://news.zdnet.co.uk/software/linu...more >>

Any help on this matter is appreciated. Given: * Win2k server w/ IIS v5.0 (stand-alone workgroup) * Another Win2k server with shares. Also stand-alone workgroup. The problem is NOT with the permission on the file- sharing server. Here is what I have narrowed it down to: * If ...more >>

Folks, This is the second day in a row I have received this in my e-mail. It has 13 different viruses packed into it. Is there any way that it can be stopped from being set all over the place?...more >>

Hi, We recently upgraded to W2003 and IIS6. In our sites we use cgi executables. They write in some directories. Under IIS 5 that was no problem, but under IIS 6 we seem to have no write-acces. Although the userrights for IUSER_xxx are correct. What can be wrong? Greetings, Ronald van d...more >>

Hi All, Im having an issue with an intranet site we have. Users in a different forest get a page cannot be displayed error. The packets returned to the user are access denied. The users can do a ping and a net view on the web server without issue. In fact any request is fulfilled axcept f...more >>

We have a web site that we have the "Requires Secure Channel" setting selected. I noticed it is very slow (20- 30 seconds) before you see the certificate request window. When I remove teh SSL requirement for this site and then open the browser, still using HTTPS, the window pops up immedi...more >>

Hello all, I'm trying to configure an ASP Web Application under IIS 5.0, 'Medium' application protection for COM Interop. I guess the IWAM_Machinename has to be explicitly granted Read/Write Permissions to some folders. Can anyone please tell me what folders these are or where I could find som...more >>

I keep getting popups for pornography and other offensive things and I don't want them on my computer! This started today, and I want it to stop! I don't know how to block these things. Please help!...more >>

Hello, We have an intranet website that allow for only employees to logon and view the contents. We enabled the SSL, and Logon with password and an account, but somehow the when I test it I can logon without typing any logon name or password, but if I type a incorrect logon name then i...more >>

When Requesting a server sertificate using a form I get the following error: An unexpected error (0x1A8) occured while getting the certificate template list Any Ideas ?? Thanks Jon...more >>

My wife and I are developing an online directory and calendaring application for our church web site. We have lots of development experience but no hosting experience. We are going to have about 2000 to 3000 high res jpeg and low res jpeg pics. This is about 3 to 4 gig of data. This pushes us t...more >>

I would urgently like to know if IIS can do the job of apache Tomcat. Any help would be much appreciated ...more >>

I'm setting up an iis5 server in a university setting to allow .net project creation from VS .Net. I have the 1.1 framework installed as well as fp extensions 2002. Created a folder as an application in Internet Services mgr & virtual directory which points to file system folder. In the frontpag...more >>

I have a vendor web program host on my company web site, it allows user input the UserID and Password to get into their system. However, we found that client browser has recorded the UserID and Password on their windows, it should be input every time when access this program. Does anyone k...more >>

I have an Intranet app (asp.net) running on IIS5 and have Integrated Windows Authentication turned on (all other auth options are turned off). I'm trying to let users to log in seamlessly, but it brings up a dialog box for username, password, and domain name. And the interesting thing is...more >>

I probably do not have the right group so if you can direct me in the proper channel I would appreciate it. My problem is that Outlook Express deletes every attachment that is sent to me and some of them are important and I DO NOT want deleted. Who do I contact and how can I get it stopp...more >>

It appears that I can only set the permissions for the whole ftp site. I would like to give individual user access to each folder. Am I asking to much? Doyle Collings Network Administrator City of Logan dcollings@loganutah.org...more >>

I am trying to implement a certificate infrastructure for VPN connections using L2TP/IPSEC VPN connections. I got this working successfully on a Windows 2003 server in a test environment. On my live network I installed Certificate Services on my Windows 2000 SBS server as an Enterprise Authori...more >>

I hope u can help me. I would like to test ASP websites and therefore I neet the Internet Information Service feature from Win XP. The problem is that I have Win XP Home Edition. Is there any way to upgrade this feature called Internet Information Service to my Win XP Home Edition system? ...more >>

I hope u can help me. I would like to test ASP websites and therefore I neet the Internet Information Service feature from Win XP. The problem is that I have Win XP Home Edition. Is there any way to upgrade this feature called Internet Information Service to my Win XP Home Edition system? ...more >>

I am running Windows 2000 Server and using Workgroup Mail for my mail server. I had a spammer use my server thorugh my SMTP. I locked down open relay in Workgroup mail but the spammmer is going through my SMTP on IIS. I would like to know how to properly lock down my server so I can sen...more >>

I ofeten send emails to large groups of people. Is there a way I can "hide " their email addreses on the email? I am not able to "group" them since this list may change many times daily....more >>

Howdy, I find that IIS 6.0 doesn't have IUSR (Read) on the 'wwwroot' directory, but IIS_WPG group (which doesn't include IUSR), but the web content still displays for Anonymous Access. Is this impersonation? Is this correct? Dan Foxley ...more >>

EVENT ID: 7023 These two services are getting terminated unexpectingly several times a day (sometimes hundreds). I have installed SP3 but this problem still occures. I am forced to reboot machine almost every day. Does anyone have idea what might be wrong? IIS patches are installed (planty...more >>

I have IIS 5.0 on win2k server machine which is part of a domain. everything was working fine untill today the domain users started experiencing accessing the web server. an "authentication" window pops up and asks them to authenticate to the web server, if they cancel it "HTTP 401.1 - Unauthori...more >>

When I click on Server Certificate under any site...new or old...the Web Server Certificate Wizard does not start. Nothing Happens at all. I have been trying to figure this out for way too long. I have no idea what the problem could be. This is a Windows 2003 Standard Server. Does anyone ...more >>

Hello everyone, I'm a totally newbie to certificate and SSL. I'd like to host a website using IIS 5 through the HTTPS protocol, which means I need to have a server certificate generated. But as far as I know, WinXP does not have Certificate Service that can issue a certicate although I ca...more >>

May I know how to stop is problem. There's a opening of this webpage sometime when i start the computer how to stop is? Thanks...more >>

Hi, I can't seem to find how to do this... From a post on this group on July 22nd: > For example, find iisext.vbs in the System32 directory, and it will show you > how to add/remove/modify Web Service Extensions (i.e. allow ISAPI DLL to > execute). (http://groups.google.com/groups?hl=en&...more >>

Hi, Is there any alternative or similar product for RSA security tokens/ Ace server ? Their product is good but expensive. Any help would be appreciated, Ali ...more >>

Hi there, I am trying to create a VB script to re-create many web sites on an IIS server. My problem is for those secure sites. I need to import the pfx key first and then assign it to a web site. Is there anybody knows how to do it programmatically? Maybe ADSI or WMI? Thanks in advanc...more >>

Hello, I locked permissions for one html page in a web site. I took out the iusr_servername and put in a newly created user. Using IE you can enter the credentials of the new user and view the page. Netscape doesn't allow the user to log in. It says authentication failed and doesn't show t...more >>

Hi All, I currently run Windows 2003 and Exchange 2003 on an AMD AthlonXP 2000+ w/ 512MB RAM and on a 512Kbps SDSL connection. The secure Outlook Web Access can sometimes be pretty poky, so I was looking to upgrade the system. There are only a handfull of users in the AD, and only a few...more >>

I have the following Windows 2000 Service Pack 3 IIS 5.0 We host an external website as an internal site for employees only. The security is set up so that when attempting to access the employee's site you must supply username and password which is working fine. The issue is that mana...more >>

Please help! This error occurs to an asp page file in iis. HTTP Error 401 401.3 Unauthorized: Unauthorized due to ACL on resource This error indicates that the credentials passed by the client do not have access to the particular resource on the server. This resource could be either the ...more >>

Hi, All the default pages on our webserver have been replaced. Something went through and dumped bogus index.asp, index.htm, .php, default.ht, etc... overwriting the legitimate default document. The bogus page is black with white writing on it "HACKED BY LA VIVORA" Remindes me a lot of code r...more >>

We are trying to restrict the IP address access on our IIS 5 web server that sits on Windows 2000 professional service pack 3. What is the best way to do this. When we go to the administration tools for directory secuirty the denied access area it is grayed out. How can we make this acti...more >>

Hello, Is there any script for schedulling metabase backup? Thank you!!...more >>

Our company is having a website which is accessed by clients for trading. The site was running fine. The threat from w32blaster.worm was so potential that we applied the patch. But after that, clients are complaining that the site is not accessible. So what i would like to know is that...more >>