Hi: I am working on a project that requres impersonation of a user's identity. I use a name pipe server to generate a user token by calling LsaLogonUser. When the token is returned to ISAPI filter, I call SetThreadToken to attach the token to the running thread, So that user can access some M...more >>

Hello I installed IIS on my Windows XP Professional desktop and it's not functioning. When I type http://localhost/aspnet_client/system_web/1_1_4322/SmartNav.htm it says the Page cannot be displayed. I'm able to run inetmgr Can someone tell me what is wrong Thanks Jibey Jaco ...more >>

I am not quit sure why I am get this error, because every thing was working and then all of a suddon, it started to give me this error when I tried to go to my web page: HTTP 500.100 - Internal Server Error - ASP error Internet Information Services ----------------------------------------...more >>

To whom it may concern: I have been receiving emails from Microsoft Coorporation Program Security Division regarding an internet security patch. I have reasons tobelieve that this is a scam. Where should I send the email so this can be studied? Thank you, Francisco Diaz ...more >>

I have been trying to install IIS on this Dell 1Ghz Pentium III Workstation with Win2000Pro. I am installing a local Intranet Web & using FrontPage2002. I finally got the IIS installed but I had to remove Norton Internet Security and Anti-Virus 2004 to do it and IIS will not work when I ...more >>

Please help. I've downloaded and ran both Spybot and Ad-Adware, but even after I reset my home page it still periodically returns to something called "findthewebsiteyouneed.com." Also, something called "dotcomtoolbar" keeps popping up and tries to affix itself to my toolbar. I'm about to punch a ...more >>

I'm having some difficulties setting up Digest authentication on IIS 6.0 - Windows2003. Installation steps are as follows 1. Install Windows 200 2. Install Active Directory and DNS to make the machine a domain controlle 3. Install Internet Information Server 6. Set the authentication of "Defau...more >>

These idiots changed my home page ... bought Spyware but it comes back every time I boot up. Changed tools options homepage still I redirected. How do I kill this thing? http://online-wizard.com/index.php?aid=33...more >>

I am unsure if this is a new problem or just how IIS6.0 functions; I setup a SSL site on our server and tested user logons, if a login is successful or not it is reported in the evenviewer security view as a golden key (Successful). We need to be able to monitor our site and be able to determine...more >>

BlankJeg pleier å browse mine websider fra IIS 5.0, normalt ingen problemer. Men i dag fikk jeg skjedde dette på alle lokale sider: I use IIS 5.0 for browsing my websites. Normally no problems, but today, I got this message on every website on my local computer: Access Denied ---------...more >>

I recently had to enable anonymouse access on my server after I started hosting a website. My problem is that I started seeing strange IP addresses on my server immediately. My server is behind an ISA firewall. My question is how do I allow anonymouse access and still prevent hackers on my...more >>

Hello All I have both basic and integrated authentication enabled on a new win2003 server with iis6. But when accessing the default site throught a laptop which is connected to the same domain and authentication has already taken place, you still receive a nt login prompt when attempting to conne...more >>

Greetings, Problem Summary: We are unable to configure IIS to allow an intermediate Certificate Authority certificate to be used for client authentication. Background: We are setting up a secure web site. We want to enable access to a portion of the web site to holders of a particular cli...more >>

I am runnning a website in ASP, and want to use the basic authentication method to validate my users. However, rather than create windows accounts for each of the millions of users, I want to store the usernames and passwords in a database. I am currently using a form to authenticate, but it l...more >>

G/day forum, Can anyone give me an insight into the effectiveness of using BS7799 as a basis for a corporate security policy? I work in an E-Commorce environment and now it transpires that a strictly enforced corporate security policy has to be put in place. Regards, Steve. ...more >>

We are developing a web based asp.net application that is deployed throughout the world. Many users have low latency connections to the webserver, and we notice that when we use Integrated Authentication in IIS (which we are required to do), the responsetimes for most requests are doubled compar...more >>

Hi, Can anyone help with this file that has created several logs on my Windows 98 PC? I have absolutely no idea what it is, but it is constantly running in the background under Windows/system/hyzzviec.exe My main question is can I delete it, particularly as I don't know if it is harmful? M...more >>

The authentication dialog prompting for a client certificate is not displayed to the browser. Why? Note: This happens when the browser is requesting a protected resource for the first time....more >>

Hello i have couple .asp -files that need authenticated access to display, but IIS doesn't seem to ask login information when i load the page first time. At the second time it asks for login/pass. Anyone know what this might be about? It might look like the page doesn't work for a user if it doesn'...more >>

I am new to IIS and Windows servers so please excuse me before I start .... I just loogged on to my server to do some work and noticed 4 new directories have appeared that I did not create named: y 1878 P 86027 sds sadaaaaaaaaaaaaaaaaaaa I am worried someone has gained access to m...more >>

I deleted IIShelp and MSADC from my IIS server. Is it ok to delete the msadc and iishelp folders c:\inetpub\iishelp c:\program files\common files\system\msadc...more >>

Requesting advice re what exactly is going on here. We have a very formal patch update process in place - these are reviewed every week and installed during the weekly maintenance period, unless it requires immediate application, or is not needed. I know about webdav. I'm asking about the 200,...more >>

I have removed virtual directories and thelogical folders from my iis server (ie. iisamples, iishelp, msadc) What is the iisadmin virtual folder? Is it ok to remove? Thanks....more >>

i created my own certificate rather than using an external certificate authority and the only problem is that when a user first goes to my site they get the "This certificate cannot be verified up to a trusted certification authority." message since i didn't use someone like verisign to issue t...more >>

I'm trying to setup anonymous access for viewing Online Archive files from a Web Server In NT4.0 w/IIS 4 the IUSR_ Account was easy to setup & find but I can't seem to set it up or locate it in IIS 5 I have currently have my "Guest" account disabled because of this issue Any help / input will be...more >>

Does anyone know how to reset the password to the original value. afer changing the anonymous login acct from IUSR to a windows account (which did not work) setting it back to IUSR requires a password prompt. If you enter one in the account never works again. Seems like you have to reload ...more >>

i just setup Microsoft Certificate Services to act as my certificate authority. i installed a new certificate on my website, then went into IIS to test the cert. i enabled SSL on my website via the Directory Security tab. then went back to internet explorer and browsed to: http://mysite.co...more >>

You are not authorized to view this page You do not have permission to view this directory or page due to the access control list (ACL) that is configured for this resource on the Web server. From the default web site popup I select New -> Server Extensions 2002 web My admin account is...more >>

is there anybody who can tell me how to disable the annoying "plop" from the privacy alert, I check the sites privacy statements etc automatically and would dearly love to strangle the incessant "plop" while I am surfing, please help, my sanity relies upon it....more >>

Hi all Please help me: The IIS Admin Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: No action. I have installed antivirus Symantec 8.1 Event ID: 7031 I work with Echange server 2000 and stopped al ...more >>

Hi All, Could someone please help me on this? I have a SSL site and one page which is exported to Excel by clicking a button. Everytime it asks for client authentication "the website you want to view requests identification, select the certificate to use when connecting". The IIS server has "...more >>

Hi, I'm working on a web app that uses IIS 5.1, MSDE, .NET 1,1. I believe that my IIS install went fine and I am able to serve .html, .asp, etc. pages to the installation PC as well as others on my local net from the Default Web Site folder. The iisstart.asp as well as another test .asp pag...more >>

Hi I'm aware that there was a vulnerability in IIS for buffer overflow attacks, and that it was resolved in an SP2 patch... however scratching thru our logs today found the following 2004-03-09 14:36:40 210.5.27.100 - 192.168.1.104 80 GET /NULL.IDA ~~ insert several lines of gibberish here ~ cm...more >>

Hello, I searched every where on the internet (including here) and I could not find any suggestions that would work for my problem. I am trying to use a counter script which writes to a file in asp using fso. I set the file that I am trying to write to's security settings so that unde...more >>

I have a web server in intranet and need SSL sertificate to use in intranet only. What I'm interested in is can I get free SSL sertificate for use during long time (1 year, for example)? And how can I obtain it? Thanks for help. Dmitry Davletbaev ...more >>

I ran the IIS lockdown tool about 10 months ago and everything has been fine until recently - one of our instructors decided she wanted to require students to include a search page in their websites. I can't really undo the IIS lockdown because there's been a ton of changes since then. I went th...more >>

We were receiving the following error message on a regular basis for quite sometime and I came across the article below the error message. The article references an issue based on SP2, and I do not know if it still applies with SP4 which we are running on our Win2k IIS 5.0 Servers. ...more >>

Can session variables be used with the latest service pack for NT or windows 2000?...more >>

I was wondering what error a user would receive back from the web server when the resource they are trying to access is blocked by the URLSCAN filter? I.E., 404, 403, 401, etc? Thanks, Matthew...more >>

Hi! Houston, we've got a problem: every time we're going to load the PHP extensions php_oci8.dll and php_oracle.dll with Oracle 9i Personal Edition and IIS 5 running we got an 'Access denied' for the DLLs. This is our Dev-Environment: - Windows 2000 Server SP1 - PHP 4.3.4 - Oracle 9i Pe...more >>

My homepage has been highjacked. how can I get my homepage back? Internet options doesn't work. Each time alter it back to my old one. the new one takes over.Please Help...more >>

I have an intranet site like http://MySite/xyz If I directly go to this site I can not get the user name and account name using Request.ServerVariables["LOGON_USER"]. But I type http://MySite then internet explorer asks my my username, password and domain. Then I type my credentials and can se...more >>

Hi All, I'm having problems with using Digest Authentication on IIS 6.0. I'm using Windows 2003. The setup is as follows: DC Server (Active Directory): Windows 2003 Web Server (Separate machine): Windows 2003 as a member of above domain. I set the Directory Security setting of "Default...more >>

Since I'm moved all my data from IIS 5 on 2k workstation to IIS 6 on 2003 enterprise server I have a few issues with the Intranet pages that its hosting. Most things work but I can't run the hyperlinks that open Outlook template files (.oft files) and the hit counter created in Front Page...more >>

I haven't worked on web app for a while Now my web app needs to check if a network file exists or not. When it calls Directory.GetFiles(), the web app gets error saying "Logon failure: unknown user name or bad password. Anyone can tell me what I should do Thanks Xiaomin...more >>

I'm running IIS 5.1 and xp pro. I want to enable the internet connection firewall in network connections, only letting through port 80. when i check off the http box and let the standard service definition (port 80 coming and going) stand, I instantly lose the ability to see my web site fro...more >>

I have created a website using Basic Authentication over SSL. I am using IIS 5.0 on Windows 2000 server. On my initial page request I am prompted to enter my username and password. This is all well and good. But I have created a link on a webpage to point to another directory with more strict pe...more >>

Hi, Hope someone can point me in a good direction. I have a new application that's web based for both internal and external users. I purchased a new Win 2k3 server for the application and would like to place it in my DMZ(without a public IP) for everyone to use. My problem is how do I set up my...more >>

Hi, I need to un-install IIS lockdown tool but didn't seem to be possible. Is there anybody out there has done this before? Appreciate if you can share your tips. Thank you. ...more >>

Hello I am having a problem with my IIS 5.0 on Windows 2000. One of my domains shows up under the http://www.mydomain.com but not under http://mydomain.com. I think I've got the www.mydomain.com and the mydomain.com both registered correctly in IIS and also our router translation. I've just rec...more >>

I enabled anonymouse access on my server to allow access to my database from the internet. I've however realised this allows other people to log on to my network. My question is how do I allow someone to log on to my database without allowing everyone else to log on to my network....more >>

hi i was wondering if there was any way some1 can help me? i'm having problems while i'm on the computer, i am getting a 'banner' off microsoft internet explorer saying' cannot find 'file:///C/bns/NEW/B.555800.htm:Make sure the path or internet address is correct! this keeps cropping up e...more >>

I created a winforms user control that I would like to put in a web page. For the moment, I've just created a simple control with a label on it to test the functionality before I go and code real the user control which will be much more complicated. But, I can't even get the control with a label to ...more >>

Hello: I have required SSL with 128-bit encryption on the default web site in IIS. When I do this, it says server cannot be found when I try using the IP address, NETBIOS name, or DNS name. When I remove the SSL requirement, I can connect to the web site with no problem when using an IP...more >>