Re: IISLock has disabled ASP & SQL
From: Karl Levinson [x y] mvp (levinson_k@excite.com)
Date: 11/20/02
- Next message: Charles Otstot: "Re: MS02-065"
- Previous message: Karl Levinson [x y] mvp: "Re: Help I under atteck!!!!!"
- In reply to: Kami Razvan: "Re: IISLock has disabled ASP & SQL"
- Next in thread: Kami Razvan: "Problem Solved: IISLock has disabled ASP & SQL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Karl Levinson [x y] mvp" <levinson_k@excite.com> Date: Wed, 20 Nov 2002 16:04:36 -0500
I could be wrong, but I doubt that permissions on the files is the
problem... from the error message, it sounds like a problem logging in from
the IIS computer to the SQL server. However, it is a good idea anyways to
enable auditing to try to look for any possible permissions problems... and
this also increases your security:
http://securityadmin.info/faq.htm#auditing
I've never heard of a URLScan log file named like that, unless they released
a new version of URLScan that I'm not aware of. Usually the log file is
named URLSCAN.LOG and there's no automatic log rotation, just one log
file. Strange. One way to confirm that it's the right file is to restart
IIS... whenever IIS is restarted, you should see additional stuff in the
URLSCAN.LOG file with the date and time IIS was restarted.
"Kami Razvan" <Kami@Durability.com> wrote in message
news:c38a01c290c2$4864b590$89f82ecf@TK2MSFTNGXA01...
> Hi;
>
> I am running Windows 2000 server. We have just installed
> the .NET Framework - this is NOT a .NET server.
>
> OS: Windows 2000
> SQL: 2000
>
> I just checked the URLScan.112002.log file. I executed
> the site & there is nothing that shows up at the time that
> I visited the site. So I guess nothing is being blocked.
>
> I wonder if the permissions of any files could have
> changed that allows for the login to take place over the
> net.
>
> Regards,
> Kami
>
> >-----Original Message-----
> >When you say .NET platform, I assume you're running
> Windows 2000, right?
> >Not Windows .NET server beta? [Running IISLockdown or
> URLscan on .NET
> >server is a bad thing.]
> >
> >After editing the URLSCAN.INI file, check the URLSCAN.LOG
> file. If URLScan
> >is blocking anything, it would show up there. What do
> you see there?
> >Anything being blocked?
> >
> >
> >"Kami Razvan" <Kami@Durability.com> wrote in message
> >news:bc6f01c290a8$1f7baea0$8af82ecf@TK2MSFTNGXA03...
> >> Thank you Ken & Karl:
> >> The solutions you proposed are all true but I have
> looked
> >> at all of those.
> >>
> >> This is the status:
> >>
> >> -- Server\IUsr_Server is set in the Security/Login as a
> >> user
> >>
> >> -- IUsr_Server is set as db_datareader & db_datawriter
> for
> >> the database
> >>
> >> -- this program worked well. I simply decided to run
> the
> >> Security Analysis on the server and one a red flag
> >> appeared about the IISLock so I decided to apply it.
> >> After that all went to hell.
> >>
> >> -- On this server I have installed the .NET platform for
> >> testing.
> >>
> >> -- The URLSCAN.INI was blocking .asp and .asa and I
> >> deleted them. So it should now be allowed.
> >>
> >> Once again SQL server has IUsr_Server listed in the
> >> Security as well as in the local database that we are
> >> trying to access. The user is listed as db_writer and
> >> db_reader.
> >>
> >> Day 3 in not being able to work on this system.
> >>
> >> Regards,
> >> Kami
> >
> >
> >.
> >
- Next message: Charles Otstot: "Re: MS02-065"
- Previous message: Karl Levinson [x y] mvp: "Re: Help I under atteck!!!!!"
- In reply to: Kami Razvan: "Re: IISLock has disabled ASP & SQL"
- Next in thread: Kami Razvan: "Problem Solved: IISLock has disabled ASP & SQL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
