RE: URLScan

From: dumbwabbit (dumbwabbit@yahoo.com)
Date: 03/14/02 

Date: Thu, 14 Mar 2002 09:12:39 -0800 (PST)
From: dumbwabbit <dumbwabbit@yahoo.com>
To: "Bonner, Jon" <Jon.Bonner@k12.sd.us>, security-basics@securityfocus.com, chmsecurity@hotmail.com

Hmm, I would NOT recommend opening up the .exe
extension.
Rather, you may want to consider redirecting them to
an FTP site, either your own, or the Citrix download
location (if there is one, sorry I don't know, never
used this client).
Baaaaaad security risk to allow .exe
just my
.000002

--- "Bonner, Jon" <Jon.Bonner@k12.sd.us> wrote:
> Open the following file:
> %systemroot%\system32\inetsrv\urlscan\urlscan.ini.
> Scroll down in the file until you find the section
> containing the text ";
> Deny executables that could run on the server" and
> then place a semicolon in
> front of the EXE that appears below it. This
> comments out EXE so that
> URLScan will stop blocking files with that
> extension. Then restart IIS or
> reboot your server.
>
> Jon Bonner
>
>
> -----Original Message-----
> From: CHM Security [mailto:chmsecurity@hotmail.com]
> Sent: Friday, March 08, 2002 5:56 PM
> To: security-basics@securityfocus.com
> Subject: URLScan
>
>
>
>
> I am running Citrix nfuse on a IIS 5 server and
> attempted to install the
> urlscan.exe from M$. I have very limited knowledge
> on web servers and
> everytime I install the urlscan it kills the ability
> of clients to download
> the citrix web client (ica32t.exe) file. Like I said
> I have very limited
> knowledge of web servers and I'm not sure how I can
> edit the urlscan ruleset
>
> to allow this to happen. I would really like to run
> the urlscan tool to
> receive all of the benefits it provides, but as of
> right now I can't because
>
> it kills necessary functionality. Any help would be
> greatly appreciated!

__________________________________________________
Do You Yahoo!?
Yahoo! Sports - live college hoops coverage
http://sports.yahoo.com/

Relevant Pages

  • Re: Trend C/S/M SMB on SBS2003
    ... Fixed - problem caused by UrlScan.ini (preventing CGI script from running) ... Tool and installed UrlScan 2.5. ... Since Trend Micro uses .exe to execute CGI, ... I don't like the idea of allowing the extension ".exe" to run on my web ...
    (microsoft.public.inetserver.iis)
  • Re: Trend C/S/M SMB on SBS2003
    ... Fixed - problem caused by UrlScan.ini (preventing CGI script from running) ... Tool and installed UrlScan 2.5. ... Since Trend Micro uses .exe to execute CGI, ... I don't like the idea of allowing the extension ".exe" to run on my web ...
    (microsoft.public.windows.server.sbs)
  • Re: URLScan for IIS
    ... Subject: URLScan for IIS ... >extension '', ... Extensions listed here are commonly used on a typical IIS server. ...
    (NT-Bugtraq)
  • Re: IIS Lockdown/URLScan - no .exes
    ... INFO: Using URLScan on IIS ... Either I didn't read the Docs very>>well, or didn't configure things correctly, as my server ... >>Specifically, the server would not allow any .asp,>>or .exe files. ...
    (microsoft.public.inetserver.iis.security)
  • Re: URLScan
    ... I have seen some messages in the Microsoft IIS and security news groups ... on opeing up specific .exe's via URLScan. ... I would NOT recommend opening up the .exe ... >> reboot your server. ...
    (Security-Basics)