Re: AllowDotInPath

From: Greg (anonymous_at_discussions.microsoft.com)
Date: 02/03/04 

Date: Tue, 3 Feb 2004 03:38:59 -0800

Hi Ken,

That got me where I needed to be, thank you. The IIS log
file was throwing a 404 when set to 1. I changed some
IIS configurations and it is working now.

Now because of Wade's post I'm not sure if I should
abandon this idea all together. Do any of you run
URLScan with AllowDotInPath set to 1?

Thanks,
Greg

>-----Original Message-----
>What is in the IIS log (not the URLScan log) when you
set AllowDotInPath =
>1?
>
>I suspect that you may be having a problem with the path
containing test.htm
>(the server is looking for a file called test.htm)
>
>Cheers
>Ken
>
><anonymous@discussions.microsoft.com> wrote in message
>news:934201c3ea03$3ff83b20$a601280a@phx.gbl...
>: Thanks for the reply!
>:
>: I tried AllowDotInPath=1, rebooted the server and still
>: no luck. Funny thing is when I set it to 1, I do not
>: receive any entries in the log file. When set to 0, it
>: shows the following entry: URL contains '.' in the
path.
>: Request will be rejected.
>: Site Instance='11', Raw
>: URL='/shoptest/showitems.cfm/CategoryID/16.htm'
>:
>: So, it looks like I may have a challenge elsewhere?
>: Maybe a topic for a different newsgroup? BTW, this
works
>: just fine on my development machine without URLScan
>: installed. Thanks again for any help!
>:
>: Greg
>:
>: >-----Original Message-----
>: >In your case, you want AllowDotInPath=1 to turn off
the
>: check for dots in
>: >the URL.
>: >
>: >--
>: >//David
>: >IIS
>: >This posting is provided "AS IS" with no warranties,
and
>: confers no rights.
>: >//
>: ><anonymous@discussions.microsoft.com> wrote in message
>: >news:8de401c3e9f9$859f3d40$a001280a@phx.gbl...
>: >Thank you for the reply! I have found the same
>: >challenge, documentation seems to be contradicting. I
>: >have tried both 0 and 1. I have restarted IIS and
just
>: >to be sure rebooted the machine with both instances.
I
>: >have URLScan 2.5, to the best of my knowledge this is
the
>: >latest version. Here is a snippet from the log file:
>: >URL contains '.' in the path. Request will be
rejected.
>: >Site Instance='11', Raw
>: >URL='/shoptest/showitems.cfm/CategoryID/16.htm'
>: >
>: >I really don't want to remove URLScan from this
machine.
>: >What are the consequences of doing this? If all
patches
>: >are applied and the machine is behind a firewall.
>: >
>: >Thanks again,
>: >Greg
>: >
>: >>-----Original Message-----
>: >>I found a post from Keith McCammon and other places
>: >stating that the URLScan
>: >>documentation gives contradictory information about
>: >whether you want
>: >>AllowDotInPath to be = 1 or = 0. Have you tried
both 1
>: >and 0? You do of
>: >>course have to save the URLSCAN.INI file and restart
the
>: >IIS services for
>: >>the settings to take effect, and you should
immediately
>: >be able to confirm
>: >>what settings are applied by looking in the
URLSCAN.LOG
>: >file after the
>: >>service starts up.
>: >>
>: >>http://archives.neohapsis.com/archives/sf/ms/2002-
>: >q2/0151.html
>:
>>http://www.tacteam.net/isaserverorg/spskit/4urlscan/4url
>: s
>: >can.htm ... claims
>: >>that 1 is what you want
>: >>http://www.iisfaq.com/default.aspx?
View=A384&P=134 ...
>: >claims that 0 is what
>: >>you want
>: >>
>: >>Also, make sure you have downloaded the latest
version
>: >of URLSCAN. Early
>: >>versions had problems with AllowDotInPath, as per
here:
>: >>
>:
>>http://www.microsoft.com/windows2000/downloads/recommend
>: e
>: >d/urlscan/default.a
>: >>sp
>: >>
>: >>Also, I assume you've looked in the URLSCAN.LOG file
to
>: >confirm that the
>: >>allowdotinpath statement is really the thing that is
>: >blocking your requests?
>: >>
>: >>
>: >>"Greg" <anonymous@discussions.microsoft.com> wrote in
>: >message
>: >>news:906f01c3e9f2$0d40bdd0$a401280a@phx.gbl...
>: >>> Hello,
>: >>>
>: >>> I need to disable AllowDotInPath in URLScan but I
>: can't
>: >>> seem to get this accomplished. Here is the
scenario,
>: >>> trying to create search engine friendly URL's. So
my
>: >URL
>: >>> may look like this
>: >>> http://domain.com/test.htm/category/id/15.htm.
>: URLScan
>: >>> is rejecting this because of the dot in path. I
don't
>: >>> want to disable URLScan all together, just this one
>: >>> part. Any help would be appreciated.
>: >>>
>: >>> Windows 2000 Server
>: >>> IIS 5.0
>: >>> URLScan 2.5
>: >>>
>: >>> Thanks,
>: >>> Greg
>: >>
>: >>
>: >>.
>: >>
>: >
>: >
>: >.
>: >
>
>
>.
>

Relevant Pages

  • Re: URLScan
    ... single space character in it's entry in the IIS log, for example, the ... As each column in the IIS 5.0 log is delimited by the space character, ... I can find no way to load the IIS log into SQL Server. ... Is it possible to configure URLScan so that it leaves a different ...
    (microsoft.public.inetserver.iis.security)
  • Re: malformed request in log from SRP 2.5
    ... urlscan rejected with 400 errors and yet IIS log ... > Balancer Cisco CSS is forwarding connections to this webs site instance ... > web server. ... apparently at the same time the URLSCAN log ...
    (microsoft.public.inetserver.iis.security)
  • Re: non-ssl virtual directory in ssl website
    ... This would be diagnosable if you start tracking things down in the IIS log ... about URLScan - we did indeed have it installed, ... without any customisation of the original install values. ... So, URLScan was rejecting requests to .ini and .exe files, ...
    (microsoft.public.inetserver.iis.security)
  • Re: I was hacked
    ... What about the IIS log from just before 5:55? ... And any snort logs for the next few minutes? ... If URLScan was rejecting stuff right up until then, ...
    (microsoft.public.win2000.security)
  • Re: I was hacked
    ... What about the IIS log from just before 5:55? ... And any snort logs for the next few minutes? ... If URLScan was rejecting stuff right up until then, ...
    (microsoft.public.security)