-
Posted to
IIS7 - Security
by
David.Wang
on
06-25-2006, 6:59 AM
It sounds like your COM object needs elevated privileges of some sort, and you are seeing LUA behavior (I think it's now called UAC - User Access Control). Iif so, the failure is by-design.
For certain, User w/ Admin rights (such as joining the local Administrators group) is NOT the same as local Admin if you have UAC enabled (and it is ...
-
Posted to
General
by
David.Wang
on
06-25-2006, 3:23 AM
codeboy: The following blog entry describes the background and process for doing what you want
http://blogs.msdn.com/david.wang/archive/2006/01/29/HOWTO_Replace_an_ISAPI_DLL_on_a_Live_Server.aspx
I suggest using process recycling on IIS6.
-
Posted to
Troubleshooting
by
David.Wang
on
06-13-2006, 7:10 AM
This is an IIS7 feature.
-
Posted to
Troubleshooting
by
David.Wang
on
06-13-2006, 7:05 AM
Use a raw HTTP client like WFetch to view the output.
Weird page-display behavior usually indicates weird HTTP being returned from the server.
I suspect what is going on is this:
Your unbuffered ASP page with an error executes and sends some part of the HTTP response (probably headers) to the client prior to hitting the intentional error. ...
-
Posted to
Troubleshooting
by
David.Wang
on
06-13-2006, 6:56 AM
Most ''timer'' based behavior like Session timeout, Connection timeout, CGI Execution timeout, etc have interaction with Process Recycling of IIS6 since that kills the process state which those behaviors depend on.
http://blogs.msdn.com/david.wang/archive/2005/09/19/Why_do_I_lose_ASP_Session_State_on_IIS6.aspx
-
Posted to
Troubleshooting
by
David.Wang
on
06-13-2006, 6:49 AM
http://blogs.msdn.com/david.wang/archive/2005/09/19/Why_do_I_lose_ASP_Session_State_on_IIS6.aspx
-
Posted to
General
by
David.Wang
on
06-13-2006, 6:40 AM
Sounds like the following non-IIS-related networking issue.
On machines with multiple network cards, you need to know how to setup your network correctly. Most look like some variant of the following:
1. two NICs going to disjoint networks.
2. each of the two NICs have a default gateway defined - either statically or via DHCP.
3. Internal users ...
-
Posted to
General
by
David.Wang
on
06-13-2006, 6:34 AM
Yes, it may work, but it is unlikely to be secure. You did not identify:
What user account is being used by your application
What directory/file is being denied access
What ACL is on said resource
Without determining these things, the scope and dependencies of this application is unknown and thus cannot be properly secured nor ...
-
Posted to
General
by
David.Wang
on
06-13-2006, 6:22 AM
I suggest using WiX to build the MSI and do this work with the accompanying IIS CustomAction (along with MSI's built-in Standard Actions to set file ACLs, invoke EXEs, etc). It's free, backed by Microsoft and Open Source community, and pretty easy and powerful to do everything you need with MSI - you just have to learn a little bit ...
-
Posted to
General
by
David.Wang
on
06-08-2006, 8:09 PM
401 Diagnosis:
http://blogs.msdn.com/david.wang/archive/2005/07/14/HOWTO_Diagnose_IIS_401_Access_Denied.aspx
403 Diagnosis:
Give the HTTP Log entry - I want the status (which is 403) and substatus. The substatus will tell exactly what is wrong and how to fix it.