Re: Blocking .EXE

From: Dave (dlbrum_at_ufl.edu)
Date: 06/30/03

Next message: pdaws: "Re: iis client authentication"
Previous message: Jeff Cochran: "Re: how to transfer from LAN to DMZ"
In reply to: Tom Kaminski [MVP]: "Re: Blocking .EXE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 30 Jun 2003 09:08:32 -0700

hmmmmm... I checked that first thing, in IIS services
mmc, and the .exe file type is a registered mime type in
the list for the server.

That seems to contradict the verbiage in the KB article
reference, but there's a list of mime-types just like
previous versions, and .exe is one of them...

I also found some GPO references about "adjusting memory
quotas", and "replacing process level tokens" in the IIS 6
help, and I've done those without changing the result.

Still poking around,
dave
>-----Original Message-----
>"Dave" <dlbrum@ufl.edu> wrote in message
>news:007b01c33f17$bba36070$a101280a@phx.gbl...
>> I get a 404, file not found, when browsing a .exe file
on
>> an IIS 6 win2k3 site: IIS5 executed it fine.
>>
>> URLSCAN not installed, though this behavior is the same
as
>> an earlier post (June20) referred.
>>
>> If I set the folder perms to "scripts only" then I get
the
>> dialog box asking if I want to download the .exe or .dll
>> file. So, the behavior seen is as-if I were running
>> URLSCAN and it was blocking with a 404 message.
>>
>> Does IIS 6 have URLSCAN built-in or ????
>
>Yes it does. I think you need to allow the mime-type to
be served.
>http://support.microsoft.com/default.aspx?scid=kb;en-
us;326965
>
>--
>Tom Kaminski IIS MVP
>http://www.iistoolshed.com/ - tools, scripts, and
utilities for running IIS
>http://mvp.support.microsoft.com/
>http://www.microsoft.com/windowsserver2003/community/cente
rs/iis/
>
>
>
>.
>

Next message: pdaws: "Re: iis client authentication"
Previous message: Jeff Cochran: "Re: how to transfer from LAN to DMZ"
In reply to: Tom Kaminski [MVP]: "Re: Blocking .EXE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Blocking .EXE
... In order to run CGI applications, you must go to the IIS ... and the .exe file type is a registered mime type in ... >I also found some GPO references about "adjusting memory ...
(microsoft.public.inetserver.iis.security)
Re: ASP.NET 2.0 maximum URL length?
... explicitly installed on my IIS7/Vista system? ... URLScan - an add-on tool I have not installed. ... It's a recommended install for IIS 4.0 and 5.0, ...
(microsoft.public.dotnet.framework.aspnet)
Re: Restrict by UserAgent
... Performance concerns for the Apache solution is real because in that case, ... I would not automatically assume that the same caveat affects IIS ... > Well, after going through the available documentation on URLScan 2.5, it ... Apache cannot do this without using a custom module which happens to ...
(microsoft.public.inetserver.iis.security)
Re: URLscan problem
... I did indeed restart the IIS server after ... I took a look at the URLscan log files and found my ... >URLscan seems to be causing a problem with public folder ...
(microsoft.public.inetserver.iis.security)
RE: IIS 5 Log FIle Question
... IIS 5 Log FIle Question ... Below is a snippet from the logs. ... Does the fact the it says <Rejected by urlscan> imply ... This E-mail and its attachments have been scanned for viruses before delivery. ...
(Security-Basics)