Disable HTTP track method in .net 1.1
Hi every one, My company is scan its website for vulnerabilities. The issue is titled "HTTP TRACK Method Enabled (http-track-method-enabled)". The short description is "The HTTP TRACK method...
View ArticleClik here to view.
iis8 Basic Authentication: domain name not required for log in
Hi,Yes, this is the next in the series of authentication question by me. When I enable ONLY Basic Authentication, I get a different sign on box with a warning about transmission without a secure...
View Articleiis8 Windows Authentication: Why can't I log into a site from the iis8 Browse...
Hi,I'm working through a book on iis8 and on the security chapter. When I configure a web site for Windows Authentication (Anonymous disabled), iis8 won't accept the credentials for a domain user.If I...
View Articleiis8 Windows Authentication: Does Windows Authentication automatically allow...
Hi,The text I'm reading didn't explicity say that using Windows Authentication (Anonymous disabled) on a web site ALLOWS access to the site from the internet, but it implied it. The text stated that...
View Articleiis8 Windows Authentication: Not getting automatic site access from a domain...
Hi,I have a website with windows authentication enabled. Security (Permissions) for the website includes' Users (<domain>/Users) ' and also the Application Pool.When I logon into the domain on a...
View Articleiis8 authentication: what's the important difference between windows versus...
Hi,It seems like windows authentication is working the same as basic authentication. I'm not certain I'm knowledgeable enough yet to immediately see the differences.If anyone could explain and provide...
View ArticleOne-to-one certificate mapping not working
Hi allI'm having an issue with one-to-one certificate mappings which I have seen other threads discuss with a similar issue to mine however the answers they have provided dont seem to be working for...
View ArticleIP Restricted Security in IIS - DDNS??
I have a situation that requires IIS only respond if the client IP address matches the IIS security's IP address list.This has worked well for a few years, but the number of clients has increased to a...
View ArticleHow to log SSL negotiated cipher for HTTPS requests? (iis 8.5)
To better understand the SSL requirements of my client base, I would like to log the SSL/TLS cipher suite that is negotiated per-request between IIS 8.5 and the HTTPS client. I am looking for the...
View ArticleCustomizing Trust Levels in IIS 7.0
<div>Hi folks;We have a problem. We have a web site with a number of web applications residing under it. Each of these web applications make use of a customize configuration file which was...
View ArticleAn operations error occurred
Hi there,I’m using ASP.NET 2.0 and C#. I’ve a web form with username and password. Username is loaded automatically by grabbing the user id of the person who is currently logged on to the machine. All...
View ArticleAccess UNC share as current logged on user
Hello, I've been strugling with an issue regarding UNC share and an MVC app accesing it. So the scenario in short, this is an intranet app where users enter some data and they can also add/append...
View ArticleIIS 7 Public sites to communicate with internal site
Hi gents. im looking for info or some guide that can give but more info on how to setup a communication layer.what im after is thus:i got one public site our main site.secondly i have a internal site...
View ArticleAccess problems running IIS on Windows
I've been trying to set up IIS on a windows 8 machine. after setting it up I added a couple html pages for testing. They worked great locally. So I hopped on another computer in the network, typed in...
View ArticleFolder Owner deciding factor in Windows
Hi ,I logged into my windows 7 system with admin previlages and created a folder and i see that the folder is given owner as "NT AUTHORITY\SYSTEM" but instead of that i want it to be my username. And...
View ArticleUse Centralized Certificate Store - Checkbox missing in Add Website - Member...
I have been utilizing the following two articles to create/configure a new demo Web Farm on 2012 Servers. I beleive I have followed all the instruction steps explicitl. When completing the process...
View ArticleConnection permissions
Hello,I'm problamas permission in my application, I do upload a spreadsheet (xlsx.) To a directory on the server, when I try to connect to it via OleDB get the following...
View ArticleIIS 8.0 prohibits asp->C#->Java establishing a connection with FQDN
One of our teams is running IIS 8 on WS 2012 and has the following issue.ASP.Net c# launches a java VM and runs a java program and then talks to it via tcp. The java program is using jdbc to a...
View ArticleFTPAuthentication using impersonation user
Hi,I am using a custom FTPAuthentication assembly. The validation is done with an LDAP query against a domain controller and works fine. But I noticed with Process Monitor that the FTP connection is...
View ArticleIIS5.0 request twice login pass for direct open file
Dear All,This is an issue about IIS5.0 of Win2000ServerSP4, joint the AD Network of 2003 server.Everytime IE8 of WinXP open a AD account protected page (excel file), the web browse prompt domain login...
View Article