Re: URLScan
From: michael.a.cardosa@accenture.comDate: 03/11/02
- Previous message: How ya Doin: "Re: Contraband "hacking tool" Executables"
- Maybe in reply to: CHM Security: "URLScan"
- Next in thread: Marc Maiffret: "RE: URLScan"
- Next in thread: Mauri Gómez: "RE: URLScan"
- Reply: Marc Maiffret: "RE: URLScan"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "CHM Security" <chmsecurity@hotmail.com> From: michael.a.cardosa@accenture.com Date: Mon, 11 Mar 2002 10:22:18 -0500
The URLScan tool gets its configuration from the urlscan.ini file. I think
the default install folder is C:\Winnt\System32\inetsrv\urlscan, but I am
not positive about that one. The urlscan.txt explains how to configure
everything. Basically, you have the option to explicitly state which
extensions to allow or state which to deny. In your case, if you know the
extensions of all the files that you wish to be accessible, you could
modify the following in the urlscan.ini:
[options]
UseAllowExtensions=0 ; if 1, use [AllowExtensions] section, else
use [DenyExtensions] section
[AllowExtensions]
;
; Extensions listed here are commonly used on a typical IIS server.
;
; Note that these entries are effective if "UseAllowExtensions=1"
; is set in the [Options] section above.
;
.asp
.htm
.html
.txt
.jpg
.jpeg
.gif
.exe <====== This would be your addition to allow clients to download
ica32t.exe
Of course, you would have to configure the rest of the section to allow all
the relevant files on the webserver. Another good file to monitor is the
urlscan.log. It contains the settings that urlscan was started with as
well as details about any request that it denied.
Hope that helps.
mike
"CHM Security"
<chmsecurity@hotmail.co To: security-basics@securityfocus.com
m> cc:
Subject: URLScan
03/08/02 06:55 PM
I am running Citrix nfuse on a IIS 5 server and attempted to install the
urlscan.exe from M$. I have very limited knowledge on web servers and
everytime I install the urlscan it kills the ability of clients to download
the citrix web client (ica32t.exe) file. Like I said I have very limited
knowledge of web servers and I'm not sure how I can edit the urlscan
ruleset
to allow this to happen. I would really like to run the urlscan tool to
receive all of the benefits it provides, but as of right now I can't
because
it kills necessary functionality. Any help would be greatly appreciated!
_________________________________________________________________
Join the world's largest e-mail service with MSN Hotmail.
http://www.hotmail.com
This message is for the designated recipient only and may contain
privileged, proprietary, or otherwise private information. If you have
received it in error, please notify the sender immediately and delete the
original. Any other use of the email by you is prohibited.
- Previous message: How ya Doin: "Re: Contraband "hacking tool" Executables"
- Maybe in reply to: CHM Security: "URLScan"
- Next in thread: Marc Maiffret: "RE: URLScan"
- Next in thread: Mauri Gómez: "RE: URLScan"
- Reply: Marc Maiffret: "RE: URLScan"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
