HTR
From: Andrea (hbang@sympatico.ca)
Date: 07/04/02
- Next message: Gabriela De Feo: "Basic authentication"
- Previous message: x y: "Re: Can I change my user password through an HTML Interface?"
- Next in thread: Paul Lynch: "Re: HTR"
- Reply: Paul Lynch: "Re: HTR"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Andrea" <hbang@sympatico.ca> Date: Thu, 4 Jul 2002 07:25:40 -0700
Re: The latest MS security bulletin for IIS and locking
down the HTR functionality.
Hi,
I'm not that familiar with IIS, but most of the
information I have read recommends disabling HTR because
it is not required unless OWA is used. What if OWA is
used, how is the IIS server secured against this
particular threat? Will this patch fix that without
effecting OWA? (I've had some bad experiences with
Microsoft's "fixes").
As well, from what I read, people have said HTR is needed
for the password feature of OWA - what if the password is
set in the user's NT accounts and are changed on the
server by a network admin for the users? Is HTR is still
required?
Thank you for any information that you can provide.
Andrea
- Next message: Gabriela De Feo: "Basic authentication"
- Previous message: x y: "Re: Can I change my user password through an HTML Interface?"
- Next in thread: Paul Lynch: "Re: HTR"
- Reply: Paul Lynch: "Re: HTR"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
