Server: Microsoft-IIS/7.0\r\n
Browse by Tags
All Tags
»
IIS News
(
RSS
)
Community Info
IIS
IIS Books
IIS Downloads
IIS FAQs
IIS KBs
IIS Links
IIS WebCasts
Personal
IIS DebugDiag x64 is out
Previously, the x86 version you are able to debug 32bit worker processes running on 32/64bit OSes, with this release - you can now debug a full 64bit worker processes. Here's the link at Microsoft download, and addtional note for x64 release Notes...
Security Alert - Vulnerability in Internet Information Services Could Allow Elevation of Privilege
Two days ago, a new vulnerability was found in WebDav for IIS, although few have make a big deal out of it, personally I think the impact is 'quite' minimum or at least zero in my environment coz I got no WebDav at all :) LOL... anyway - here...
Token Kidnapping - Fixed
A year ago... Cesar Cerrudo presented a serious vulnerability via evalvation of privilege involving the NetworkService or LocalService account specific to IIS worker process. Although Microsoft addressed this in April last year, but it was more towards...
Top 8 - Web 2.0 Security Threats
Got this from a mailing list - the top 8 security threats in Web 2.0 applications. 1. Insufficient Authentication Controls 2. Cross Site Scripting (XSS) 3. Cross Site Request Forgery (CSRF) 4. Phishing 5. Information Leakage 6. Injection Flaws 7. Information...
IIS Insider - Zzz...
Errr.... 2 yrs ago I told you I wrote the last ever IIS Insider column for MS!!! Chris Adam back then even put up a notice to inform everyone. Believe me, the URL is valid back then.... after MS site reorg, yeah! happen every quarter you know :) so it...
IIS Insider - September 2006 Issue - Repost
IIS Insider: September 2006 By Bernard Cheah, IIS Insider is a monthly column designed to answer your questions on how to troubleshoot and make the most of Microsoft Internet Information Services (IIS). The example companies, organizations, products,...
Ping Ping Ping!!!
Yo yo yo.. happy 2009. Oops! 2 weeks late.. wtf Good news - Alive and kicking!!! !@$!#@%#@% Bad news - Freaking busy with work and life It is getting tougher with the current economy climate... is it bottom yet ? or the market still sinking slowly ? No...
How to Detect, Identify and Defend against SQL Injection?
SQL Injection has been around for many years :) and you probably get over 3 million results when you googled the term. so why is it so HOT now? Well, not so long ago some folks (don't ask me who!!, go read) were claiming that it was an IIS exploit...
IIS KBs - May 2008
Well, for last month we got zero new IIS KB articles, yet few are related to IIS in certain way. 941850 When you try to access files on a WebDAV site that uses only Digest authentication, the process may fail on a Windows Vista-based computer 942039 FIX...
Improving Web Service Security: WCF
The Microsoft Patterns & Practices team just published a beta copy of Improving Web Service Security for WCF or code name Indigo last week. This is another great playbook from the team that gives us many great guides and practices in using Microsoft...
IIS 7 Shared Hosting Summary
Damn! I love this blog post from Thomas , and you can easily noticed that IIS team has put lot of effort in shared hosting environment, from shared to delegated configuration, and all the way to process model improvements. The dynamicIdleThreshold for...
IIS FTP PassivePortRange
Years ago, I wrote the KB on passive port range at MSKB site - How To Configure PassivePortRange In IIS http://support.microsoft.com/?id=555022 Lazy to update the article for IIS 7.0 FTP detail, and I'm not going to add that here :) Coz you can get...
Security Alerts - April 2008 (Special)
Microsoft revised two security bulletins yesterday. One of which is related to .Net Framework published last year , not major update or new fixes but rather doc updates on changes related to releases of WinXP SP3. On the other hand, in the recent Hack...
IIS KBs - March 2008
948801 If an SMTP connector set the Outbound Security option to "Integrated Windows Authentication," the SMTP connector does not work in the IIS Metabase when you restore an Exchange Server 2003 server by using a Disaster Recovery mode 949455...
Security Alerts - April 2008
Oh well, been busy and no time to post this back then. In the routine patch Tuesday this month, Microsoft released 8 security bulletins with 5 of which in critical severity and one specific bulletin is related to IIS in a way. The 08-022 actually replaced...
Security Alerts - March 2008 (Special)
Today, Microsoft released a major revision for a vulneribility reported last year on .Net Framework. If you running framework version 1.0, 1.1 and 2.0. Please apply the fix asap. Take note that even you are running 3.0, it is essentially using .Net Framework...
IIS 7.0 Administration Pack!
Wow, what can I say? The IIS product team is really spending lot of effort you give you the best experience for IIS 7.0. Today, they released technical preview one for the brand new administration pack! you can take this as UI addon to various configuration...
IIS KBs - February 2008
949348 How to specify a custom location for the isolated configuration file in Internet Information Services 7.0 949349 Error message when you use Server Manager in IIS 7.0 to open a feature configuration page: "Cannot add duplicate collection entry"...
More IIS 7 Downloads
It is hot! with the official release of W2k8 / IIS 7.0 , Microsoft has released more goodies for you to experience the new IIS 7.0 revolution, latest releases including the IIS 7.0 Manager or Remote Manager for Vista/XP/Win2k3, as well as the long awaiting...
Security Alerts - March 2008
In this month security bulletin , although all critical fixes are related to MS Office, one of the bulletin is related to Office Web Component and hence if you utilizing OWC in your web application, you need to apply the patch asap. Details: Vulnerabilities...
More Posts
Next page »
News
Visit -
www.iis.net
- the official IIS community
Grab this badge here!
Search
Go
This Blog
Home
Tags
Community Info
IIS
IIS Books
IIS Downloads
IIS FAQs
IIS KBs
IIS Links
IIS News
IIS WebCasts
Intel
Personal
Archives
November 2009 (1)
October 2009 (1)
June 2009 (1)
May 2009 (2)
April 2009 (2)
February 2009 (1)
January 2009 (3)
July 2008 (1)
June 2008 (3)
May 2008 (3)
April 2008 (3)
March 2008 (5)
February 2008 (3)
January 2008 (2)
December 2007 (1)
November 2007 (1)
October 2007 (2)
September 2007 (2)
August 2007 (3)
July 2007 (7)
June 2007 (1)
May 2007 (2)
April 2007 (8)
March 2007 (5)
February 2007 (4)
January 2007 (4)
December 2006 (3)
November 2006 (5)
October 2006 (6)
September 2006 (3)
August 2006 (5)
July 2006 (8)
June 2006 (7)
May 2006 (4)
April 2006 (7)
March 2006 (11)
February 2006 (4)
January 2006 (4)
December 2005 (8)
November 2005 (8)
October 2005 (13)
September 2005 (10)
August 2005 (9)
July 2005 (7)
June 2005 (13)
May 2005 (14)
April 2005 (6)
March 2005 (7)
February 2005 (8)
January 2005 (7)
December 2004 (8)
November 2004 (5)
October 2004 (11)
September 2004 (6)
August 2004 (6)
July 2004 (15)
June 2004 (9)
May 2004 (13)
April 2004 (5)
March 2004 (10)
February 2004 (10)
January 2004 (6)
December 2003 (5)
November 2003 (4)
October 2003 (6)
IIS Sites
IISToolBox.com 
-Tom Kaminski
IISFaq.com
-Brett Hill
IISAnswers.com
-Brett Hill
IIS-Resources.com
-Jeffrey C. Tindillier
IISLists.com
-Brett Hill
IIS.net
-Microsoft
MVPs - MVPs
Chris Crowe
Ken Schaefer
Kristofer Gafvert
Michael Sakr
Mitch Tulloch
Scott Forsyth
Steve Schofield
Paul Lynch
IIS Related
IIS Insider
Channel 9 (IIS)
Port80 Software
IIS-Digest
LogParser.com
IISLogs.com
IIS.NET
Syndication
RSS for Posts
Atom
RSS for Comments
Email Notifications
Go