Adding IP address like host header in IIS 8 shows UI validation error, this worked fine in IIS 7.5 and earlier

There are situations where we have the site specified like below in several configurations, for example like in GPO we specify the location of the Automatic Proxy Configuration script to be at location:http://192.168.172.1/wpad.dat, so to make this not depending on the availability of DNS resolving. In IIS7, we could register the IP address as hostname. If…


Custom developed HttpModule for URLSecurity which works fine with .Net 3.5, but fails in .Net 4.0 with error "not trusted"

You have developed custom HttpModule for URLSecurity which works fine with .Net 3.5, but fails in .Net 4.0 with error “not trusted”   The reason for above error lies in new Code access security (CAS) model. So just switching to 4.0 framework may not help. You need to configure ASP.Net 4.0 application to Use the ASP.Net…


Export All Websites from IIS6 in Package and export to IIS 7 with MSDeploy v3

Nice and simple commands To export the All Website from IIS 6 in a package: msdeploy -verb:sync -source:metakey=lm/w3svc -dest:package=c:\temp\AllSites.zip,encryptPassword=test -enableLink:appPool     To import All Websites from the package on IIS 7: msdeploy -verb:sync -source:package=C:\temp\AllSites.zip,encryptPassword=test -dest:metakey=lm/w3svc,rootwebconfig32.netfxversion=2.0.50727,encryptPassword=test -enableLink:appPool  

1

Taking the User-Mode Dumps on Windows 2008 Server, Windows 7

Hi All,   We can use Debug Diagnostics 1.2 on windows 2008 and Windows 7.  Please visit KB http://support.microsoft.com/kb/2580960 for more information.   Also Windows 2008 and Windows 7 has got WER services which can take the User-Mode crash dump. This works very well for x64 versions too.   To configure WER services please visit…

1

Curtain Raiser for securing IIS 6.0 from DOS (Denial of Service) Attack

The architectural changes in IIS 6.0 compare to earlier versions make IIS a more secure platform. Worker processes run in user mode and therefore can’t access privileged items in the kernel. They also run in the context of the Network Service account with relatively low privileges. Built-in ASP functions run in the context of the…


IIS 6.0 security in terms of DOS (Denial of Service) attack

The architectural changes in IIS 6.0 also make for a more secure platform. Worker processes run in user mode and therefore can’t access privileged items in the kernel. They also run in the context of the Network Service account with relatively low privileges. Built-in ASP functions run in the context of the IUSR_machine account  …