Oct 30, 2009
In addition to FastCGI migration provider , MSDeploy 1.0 RTW shipped with a URLScan to request filtering migration provider to ease migration of UrlScan.ini settings to system.webServer/security/requestFiltering section. Even though URLScan 3.1 is supported...
2 comments
Tags: MSDeployUrlScanRequest Filtering
Jun 12, 2009
I just learned this now :-) You can now use the URLScan 3.1 with your own custom rules, and it would come handy in situations like rejecting a request based on the User-Agent string. Below is a sample rule for the same:…………… Read rest of the blog here...
1 comments
Tags: URLScan
Dec 26, 2008
I was working with one of the customer on Urlscan and their requirement was to install Urlscan on Windows Server 2003 64-bit to hide Server's identity. Basically in Urlscan.ini , we can configure "RemoveServerHeader=1" to server's identity from HTTP Header...
1 comments
Tags: IIS7.0IIS6.0URLSCANSecurityTroubleshooting
Oct 14, 2008
Although using WIX to create an MSI to do this task is a cleaner approach, it is too heavy duty for me. I do this often enough to warrant creating a script for it, so I though I would share it out. To use it you would run: InstallUrlScanAtSite.js -siteid...
23 comments
Tags: UrlScanIIS6IIS7IIS5XHTTP
Aug 19, 2008
About 2 months ago we released the beta for UrlScan v3.0 to address customer concerns with automated SQL injection attacks and we have been busy since refining it with the help of our customers, community and MVPs. You can download the bits at the links...
24 comments
Tags: UrlScanIIS6IIS7HTTP
Aug 11, 2008
My blog was down a few days ago. I've had downtime in the minutes over the last few years, but as far as I recall, it's never been down for any significant time. Keyvan noticed that a bunch of us were attacked. Phil Haack was also, ahem, haacked. I host...
4 comments
Tags: IISASP.NETToolssql injectionASP.NET MVCUrlScanhacked
Jun 30, 2008
Dissecting the SQL injection sample in the walkthrough I will spend some time dissecting the SQL injection rule posted in the walkthrough for UrlScan. Before I do so, I want to re-iterate the fact that SQL injection is a web application issue, and hence...
26 comments
Tags: SQL injectionUrlScanIIS6IIS7HTTP
Jun 30, 2008
While some folks are rejoicing, others are noticing the lack of scanning for the request entity. Why would we do that? The easy answer is that this is just not possible with an ISAPI filter. In IIS 5 and earlier, there is no API that would allow us to...
12 comments
Tags: UrlScanIIS6IIS7HTTP