« Previous Next »

Thread: URLScan : How to build a fiter on user-agent ?

Last post 07-07-2009 9:54 PM by naziml. 3 replies.

Average Rating Rate It (5)

RSS

Page 1 of 1 (4 items)

Sort Posts:

Shortcuts

Search | Active Posts | Unanswered Posts | View all users

  • 06-17-2009, 10:12 AM

    • ggcgcg
    • Not Ranked
    • Joined on 06-17-2009, 1:49 PM
    • Posts 2

    URLScan : How to build a fiter on user-agent ?

    Reply Contact

    Hi, 

    I try to build a filter on user-agent with URLScan for IIS6.

    The goal is to authorize a part of my website only for a unique specific user-agent.

    For the url http://127.0.0.1 there is no filter.

    But for the url http://172.0.0.1/MyFolder, I need to build a filter on XML files to protect them.

    The filter must authorized a unique specific user-agent which contains the srtring "MyUserAgent".

    With the example below I can block some of user-agent but not authorize only one. In more, this filter is applied on all the website and not only on the url http://172.0.0.1/MyFolder

    [options]

    RuleList=TestGG

    [testGG]
    AppliesTo=.xml
    DenyDataSection=DenyGG
    ScanHeaders=User-Agent

    [DenyGG]
    MSIE
    Firefox

    How to do ?

    Help, please.

    Regards,
    Tags:

  • 07-01-2009, 8:28 PM In reply to

    • ksingla
    • Top 25 Contributor
    • Joined on 06-14-2006, 3:02 AM
    • Redmond, WA
    • Posts 863

    Re: URLScan : How to build a fiter on user-agent ?

    Reply Contact

    Follow the instructions here to installer urlscan as a site filter. If you want to keep global rules in addition to site rules, keep the filter installed as global filter as well.

    Thanks,
    Kanwal

    Follow me on twitter at http://twitter.com/kjsingla

  • 07-02-2009, 3:37 AM In reply to

    • ggcgcg
    • Not Ranked
    • Joined on 06-17-2009, 1:49 PM
    • Posts 2

    Re: URLScan : How to build a fiter on user-agent ?

    Reply Contact

     Hi, thank you for your answer to customize URLScan for a specific website.

    But How can I set URLSCan to authorize only one specific user-agent ?

    Because, with the "DenyDataSection" zone it's possible to deny a list of  user-agent but I want to authorize only one of them and the rest of user-agent is denied by default.

    Regards,

  • 07-07-2009, 9:54 PM In reply to

    • naziml
    • Top 150 Contributor
    • Joined on 03-10-2008, 6:25 PM
    • Posts 41

    Re: URLScan : How to build a fiter on user-agent ?

    Reply Contact

    UrlScan does not have the ability to interpret wildcards or do any pattern matching on the values you give it. So both allow and deny lists are limited to actually specifying substring matches. Also it currently does not have any way of specifying a configuration for "Allow Only Requests If Certain Header Is Present"  We are considering revising UrlScan to come out with a version that supports at least some basic pattern matching, but I don't have any availability dates with me. HTH
Page 1 of 1 (4 items)
Microsoft Communities