Our InfoSec people are obviously bored. Is there a straightforward to way to configure IIS 6.0 to not allow client connections using SSLv2 (and only respond to SSLv3)? I have read the following: http://support.microsoft.com/kb/299875/en-us http://support.microsoft.com/kb/216482 http://sup...more >>

All, I have an application that is currently working in IIS5 that when elevated to a IIS6 machine is causing some problems. I have a .Net application that is running under the default application pool "Network Server" account. My application uses a .Net to Java bridge (proxy) to use a 3rd p...more >>

We are having problems with windows authentication in IIS on one of our domain controllers. Here's what we have done: We have setup a test virtual directory in the default web site to D:\WebSites\WebSiteA, disabled anonymous access and enabled windows authentication. Everything works fine. But, ...more >>

I am building a server application which I expect to run on servers that are in the Trusted Sites zone for many of my users. However, I will be serving up content that, in some cases, comes from third parties and it is theoretically possible that some of that content might contain malicious scr...more >>

Hello all, I want to protect the file from special folder, but keep the access for editor from CMS (Content Management System) , Is possible to do that on IIS 5 / 6?? e.g: protected folder: http://website1/download/ , but editor can login to CMS and read and write a file from that directory...more >>

When a user (that's in active directory) logs into ftp://domainnameA.com he sees the home directory of domainnameB.com.... it is happening to all domains. In other words it's like any account user name all see D:\inetpub\domains\domainnameb even though the home directory of every domainame...more >>

Hello, Sometimes we need to restart the IIS services on our intranet server due to the intranet hanging. I am trying to figure out how I can grant my web developer access to the IIS Manager remotely so that he can restart IIS when needed. This is the quick fix to the hanging problems. The int...more >>

Hi all there, we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. We use Integrated Windows Security. Now we want to monitor the application by use of Nagios. It seems that Nagios doesn't support keberos. So another idea is to additionally set basic authentication that a...more >>

I asked one off RapidSSL reseller to renew SSL certificate for web site on IIS 6. The reseller has generated a renewal certificate without any renewal request from me. Is possible to install this certificate? Is possible to generate renewal certificate without any renewal request info? ...more >>

WE have a WEB-Based application that (among other things) generates an excel spreadsheet that is returned to the user. The entire site is SSL secured and uses NTFS permissions for all pages. All users must have a domain account to access the site. When initially entering the site, they a...more >>

I have installed a web application in a virtual directory under the default web site. Before I installed the application, SharePoint was already installed. When I attempted to browse to my default page in my web site, I get a message that says, "HTTP Error 403.4 - Forbidden: SSL is require...more >>