RE: IISLockdown Issue
From: Jason M. Murray (a-jamur_at_online.microsoft.com)
Date: 09/19/03
- Next message: Bernard: "Re: E-mail received - supposedly from Microsoft"
- Previous message: Eric Einbinder: "E-mail received - supposedly from Microsoft"
- In reply to: Niall Litchfield: "IISLockdown Issue"
- Next in thread: Niall Litchfield: "Re: IISLockdown Issue"
- Reply: Niall Litchfield: "Re: IISLockdown Issue"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 19 Sep 2003 11:43:33 GMT
hi niall,
you shoudl be able to modify the setting in your urlscan.ini file to fit
your needs. It should be located in
%WINDIR%\System32\Inetsrv\URLscan.
you may also want to look at this article
http://support.microsoft.com/?id=326444
Best regards,
Jason M. Murray [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm.
--------------------
| From: "Niall Litchfield" <n-litchfield@audit-commission.gov.uk>
| Newsgroups: microsoft.public.inetserver.iis.security
| Subject: IISLockdown Issue
| Date: Fri, 19 Sep 2003 10:27:42 +0100
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2800.1158
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
| Lines: 22
| Message-ID: <3f6acc0e$0$15781$ed9e5944@reading.news.pipex.net>
| NNTP-Posting-Host: host9.audit-commission.gov.uk
| X-Trace: 1063963662 reading.news.pipex.net 15781 193.128.236.219
| X-Complaints-To: abuse@uk.uu.net
| Path:
cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed00.sul.t-online.de!t-onlin
e.de!skynet.be!skynet.be!news.tele.dk!news.tele.dk!small.news.tele.dk!lnewso
utpeer00.lnd.ops.eu.uu.net!lnewsinpeer00.lnd.ops.eu.uu.net!lnewspost00.lnd.o
ps.eu.uu.net!emea.uu.net!not-for-mail
| Xref: cpmsftngxa06.phx.gbl microsoft.public.inetserver.iis.security:5016
| X-Tomcat-NG: microsoft.public.inetserver.iis.security
|
| I am in the process of transferring a number of websites from one server
to
| a newer piece of hardware. As part of the build process once IIS was
| installed the server had IIS Lockdown run on it. Since then various live
| websites have been added to the hardware. I have now discovered that too
| tight a security template was chosen for a site that I am currently
adding.
| It would appear that I need to modify the security setting appropriately.
| However when IISLockdown is rerun in such a situation it restores the
| metabase from its original backup and any sites configured since the
| lockdown tool are lost. This is not something I wish to happen to live
sites
| :(
|
| Is there a list somewhere of the registry changes that the tool makes, or
an
| alternative tool for securing IIS that I can use to avoid service
| interruption in my case.
|
|
| --
| Niall Litchfield
| Oracle DBA
| Audit Commission UK
|
|
|
- Next message: Bernard: "Re: E-mail received - supposedly from Microsoft"
- Previous message: Eric Einbinder: "E-mail received - supposedly from Microsoft"
- In reply to: Niall Litchfield: "IISLockdown Issue"
- Next in thread: Niall Litchfield: "Re: IISLockdown Issue"
- Reply: Niall Litchfield: "Re: IISLockdown Issue"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
