Filtering for SQL Injection on IIS 7 and laterhttp://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspxThis article is specific to IIS 7 and later. If you are using IIS 6.0 or earlier, please see this article . Starting with version 7.0, IIS has a built-in feature that is able to filter HTTP requests. If a request is found to have contents deemed unacceptableenCommunityServer 2007 SP1 (Build: 20510.895)chimpanzee attack: Filtering for SQL Injection in IIS7 &laquo; zycd.net.cnhttp://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspx#2966996Thu, 26 Feb 2009 02:13:54 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:2966996chimpanzee attack: Filtering for SQL Injection in IIS7 « zycd.net.cn<p>Pingback from &nbsp;chimpanzee attack: Filtering for SQL Injection in IIS7 &amp;laquo; &nbsp;zycd.net.cn</p> <img src="http://blogs.iis.net/aggbug.aspx?PostID=2966996" width="1" height="1">re: Filtering for SQL Injection on IIS 7 and laterhttp://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspx#2944940Mon, 16 Feb 2009 16:35:45 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:2944940daniele.baldessari<p>Is a bug ? After apply the SQLInjection rule settings the querystring lenght is set at max 25 char. It's not possible overriding the setting with &lt;requestlimits /&gt;</p> <p>how can I do ?</p> <img src="http://blogs.iis.net/aggbug.aspx?PostID=2944940" width="1" height="1">Filtering for SQL Injection in IIS7http://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspx#2937714Thu, 12 Feb 2009 20:21:13 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:2937714wsspectacular<p>One of the most common attacks against websites is a SQL Injection attack. What is a SQL Injection Attack</p> <img src="http://blogs.iis.net/aggbug.aspx?PostID=2937714" width="1" height="1">Filtering for SQL Injection on IIS 7 and later &laquo; Aspwebhosting&#8217;s Bloghttp://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspx#2836817Tue, 30 Dec 2008 02:26:33 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:2836817Filtering for SQL Injection on IIS 7 and later « Aspwebhosting’s Blog<p>Pingback from &nbsp;Filtering for SQL Injection on IIS 7 and later &amp;laquo; Aspwebhosting&amp;#8217;s Blog</p> <img src="http://blogs.iis.net/aggbug.aspx?PostID=2836817" width="1" height="1">Filtering for SQL Injection on IIS 6 and earlier : Wade Hilmo : The Official Microsoft IIS Sitehttp://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspx#2824166Mon, 22 Dec 2008 10:50:52 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:2824166Filtering for SQL Injection on IIS 6 and earlier : Wade Hilmo : The Official Microsoft IIS Site<p>Pingback from &nbsp;Filtering for SQL Injection on IIS 6 and earlier : Wade Hilmo : The Official Microsoft IIS Site</p> <img src="http://blogs.iis.net/aggbug.aspx?PostID=2824166" width="1" height="1">How IIS can help with SQL Injectionhttp://blogs.iis.net/wadeh/archive/2008/12/18/filtering-for-sql-injection-on-iis-7-and-later.aspx#2821581Sat, 20 Dec 2008 08:18:35 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:2821581iis<p>2008 has been a busy year for attackers exploiting SQL Injection vulnerabilities in web applications</p> <img src="http://blogs.iis.net/aggbug.aspx?PostID=2821581" width="1" height="1">