Dec 18, 2008
2008 has been a busy year for attackers exploiting SQL Injection vulnerabilities in web applications. Once again, I am finding questions about this subject in my inbox. Earlier today, I found myself reviewing the material that's been published by Microsoft...
5 comments
Dec 18, 2008
This article is specific to IIS 6 and earlier. If you are using IIS 7.0 or later, please see this article . The IIS team has created an add-on tool for IIS called UrlScan that is able to filter HTTP requests. If a request is found to have contents deemed...
4 comments
Dec 18, 2008
This article is specific to IIS 7 and later. If you are using IIS 6.0 or earlier, please see this article . Starting with version 7.0, IIS has a built-in feature that is able to filter HTTP requests. If a request is found to have contents deemed unacceptable...
12 comments