Can I add a NEW SECTION to URLSCAN?
From: Clay Ramsey (clayramsey@yahoo.com)
Date: 12/12/02
- Next message: James Morey [MS]: "Re: iis reporting internal error"
- Previous message: Tim Greene: "RE: Key Manager"
- Next in thread: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: BB: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: Jeff Cochran: "Re: Can I add a NEW SECTION to URLSCAN?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: clayramsey@yahoo.com (Clay Ramsey) Date: 12 Dec 2002 14:55:06 -0800
Greetings all.
As you are aware, URLSCAN has sections like [DenyUrlSequences].
Can I *ADD* a new section to it? Like [AllowUrlSequences]?
It would be pretty handy in that you could deny .exes, but allow a
particular exe.
As it is, I am allowing all .exes on a server, but disallowing
cmd.exe, root.exe, and admin.dll. I'm not too keen on this since I am
allowing ALOT of other attack vectors. The worst offenders are locked
down, but.........
- Next message: James Morey [MS]: "Re: iis reporting internal error"
- Previous message: Tim Greene: "RE: Key Manager"
- Next in thread: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: BB: "Re: Can I add a NEW SECTION to URLSCAN?"
- Reply: Jeff Cochran: "Re: Can I add a NEW SECTION to URLSCAN?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
