Re: IIS5 - 'microsoft false logging weakness'

From: "Bernard Cheah [MVP]" <qbernard@xxxxxxxxxxxxxxxxxxx>
Date: Wed, 31 Oct 2007 11:10:49 +0800

Don't quite get you ? false logging weakness?
Urlscan is the IIS add on for IIS 4/5 or even 6 to block requests base on
specific rules.
how does it helps in your case?

Read -
How to configure the URLScan Tool
http://support.microsoft.com/Default.aspx?id=326444

--
Regards,
Bernard Cheah
http://www.iis.net/
http://msmvps.com/blogs/bernard/

"news.microsoft.com" <Alan Corbett> wrote in message
news:%235mtZbmGIHA.5160@xxxxxxxxxxxxxxxxxxxxxxx

Please help,

I've got an IIS machine that is failing PCI compliance due to the 'False
Logging Weakness'. the resolution states to use URLScan to translate hex
codes into characters, but I have no idea how to do this...

Can anyone shed some light?

Thanks.

References:
- IIS5 - 'microsoft false logging weakness'
  - From: news.microsoft.com

Prev by Date: Re: Upgrading from IIS 5.1 to IIS 6.0
Previous by thread: IIS5 - 'microsoft false logging weakness'
Index(es):
- Date
- Thread

Relevant Pages

Re: ASP.NET 2.0 maximum URL length?
... explicitly installed on my IIS7/Vista system? ... URLScan - an add-on tool I have not installed. ... It's a recommended install for IIS 4.0 and 5.0, ...
(microsoft.public.dotnet.framework.aspnet)
Re: Restrict by UserAgent
... Performance concerns for the Apache solution is real because in that case, ... I would not automatically assume that the same caveat affects IIS ... > Well, after going through the available documentation on URLScan 2.5, it ... Apache cannot do this without using a custom module which happens to ...
(microsoft.public.inetserver.iis.security)
Re: URLscan problem
... I did indeed restart the IIS server after ... I took a look at the URLscan log files and found my ... >URLscan seems to be causing a problem with public folder ...
(microsoft.public.inetserver.iis.security)
RE: IIS 5 Log FIle Question
... IIS 5 Log FIle Question ... Below is a snippet from the logs. ... Does the fact the it says <Rejected by urlscan> imply ... This E-mail and its attachments have been scanned for viruses before delivery. ...
(Security-Basics)
RE: UrlScan vs. IISShield
... IISShield provides a more solid prespective on what to protect and how to ... Regarding IISShield usage in IIS 6.0 in a more technical prespective, ... SF_NOTIFY_READ_RAW_DATA notification. ... UrlScan works in IIS6 in WPIM. ...
(Security-Basics)