Re: IIS Lockdown/URLScan - no .exe's
From: Karl Levinson [x y] mvp (levinson_k_at_despammed.com)
Date: 07/29/03
- Next message: Betty Chan: "Re: Additional http Requests for Deafult Home Page"
- Previous message: Tom Kaminski [MVP]: "Re: Please Help"
- In reply to: Bernard: "Re: IIS Lockdown/URLScan - no .exe's"
- Next in thread: Scott Gordon: "Re: IIS Lockdown/URLScan - no .exe's"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 29 Jul 2003 09:42:21 -0400
But you'll know if URLScan is the problem by looking at the URLSCAN.log
file. If the problem is URLScan, then the way to fix about any URLScan
problem is to look at the urlscan.log file, edit the urlscan.ini file as
appropriate / as dictated by what you see in the urlscan.log file, and then
restart IIS and repeat. If you don't see anything in the urlscan.log file
that could be the problem, then I might suspect a setting changed by
IISLockdown.
If so, enabling auditing might help you figure out which setting, and is
also recommended for improving the security on your web server in general:
http://securityadmin.info/faq.htm#auditing
http://securityadmin.info/faq.htm#urlscan
"Bernard" <qbernard@hotmail.com> wrote in message
news:#B2yD#XVDHA.2228@TK2MSFTNGP12.phx.gbl...
> You can edit the urlscan.ini at
> %windir%/system32/inetsrv/urlscan/
> to allow .exe extention...
>
> Get more detail about urlscan, here
> INFO: Using URLScan on IIS
> http://support.microsoft.com/?id=307608
> HOW TO: Configure the URLScan Tool
> http://support.microsoft.com/?id=326444
>
>
> --
> Regards,
> Bernard Cheah
> http://support.microsoft.com/
> Please respond to newsgroups only ...
>
>
> "S. Quillen" <scott.quillen@state.de.us-exception> wrote in message
> news:03d601c35561$7760d810$a601280a@phx.gbl...
> > Update - fixed my .asp problems by re-creating my site
> > (that need them) as Front Page Webs. Still having the
> > problem with .exe's tho, if anyone has a helpful idea.
> >
> > Thanks,
> >
> > Sq
> >
> > >-----Original Message-----
> > >Here's my problem - I'm running IIS 5 on a W2K server
> > >(SP3) to serve an intranet site (inside the DMZ).
> > >
> > >On Friday (yes, yes, never do anything on Friday) I
> > >downloaded teh IIS Lockdown/URLScan tools and set them
> > >loose on the server. Either I didn't read the Docs very
> > >well, or didn't configure things correctly, as my server
> > >started having probelms immediately thereafter.
> > >Specifically, the server would not allow any .asp,
> > >or .exe files. I have found the exception that was
> > >preventing those (in URLSCAN.ini), and a as a temporary
> > >fix, I have just removed the urlscan.dll from the list
> > of
> > >ISAPI filters in the master site configuration.
> > >
> > >This allowed my to serve .asp pages (Some anyway), but I
> > >am still unable to use any page which calls an .exe
> > (from
> > >the cgi-in folder). Where else is this being
> > >restricted? Execute permissions seem to be set
> > correctly
> > >in IIS, (scripts and executables), and the permissions
> > on
> > >the cgi-bin folder on the site in question are correct.
> > >
> > >When I try to access an .exe, I get this page:
> > >---------------
> > >An internal error has occured on the server.
> > >
> > >Please contact an administrator.
> > >----------------
> > >
> > >Any ideas what else is stopping me here? I also have a
> > >few .asp sites that are not working (Error 500)... I
> > >have rolled back the IIS Lockdown settings (and have
> > even
> > >removed the app), but am still unable to get my .exe's
> > to
> > >run.
> > >
> > >Thanks much in advance for any suggestions, etc.
> > >
> > >Scottq
> > >.
> > >
>
>
- Next message: Betty Chan: "Re: Additional http Requests for Deafult Home Page"
- Previous message: Tom Kaminski [MVP]: "Re: Please Help"
- In reply to: Bernard: "Re: IIS Lockdown/URLScan - no .exe's"
- Next in thread: Scott Gordon: "Re: IIS Lockdown/URLScan - no .exe's"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
