<2006 March>
SunMonTueWedThuFriSat
2627281234
567891011
12131415161718
19202122232425
2627282930311
2345678

On this page...

Search

Links

Member of...


ASP Insiders

MVP Visual Developer ASP/ASP.NET

Enter CodeZone

Blog Categories

Microsoft

Blogroll

Deutsche Resourcen

Management

Sign In
 

#  Tuesday, 28 March 2006

In case you need it too: Configuring SSL Host Headers shows you how to get up and running with one IP, port and certificate but multiple host headers. All you need is a wildcard certificate (learn more here) and some CLI magic because there is no UI for it. Basically, it boils down to (for example):

adsutil.vbs set w3svc/siteid/SecureBindings ":443:host.wildcarddomain.com"

Categories: Administration | IIS | Security
Tuesday, 28 March 2006 19:33:32 (W. Europe Daylight Time, UTC+02:00)  #    Comments [0]

 

Don't know how this one could slip by me - Windows Server 2003 Service Pack 1 (SP1) shipped a rather important update: you can run SSL in kernel mode (http.sys) instead of user mode. There are restrictions which are detailed here (most B2C SSL sites will do just fine), and the procedure to enable kernel-mode SSL shows how to get up and running in no time. Mostly you are only dealing with the registry key HKLM\System\CurrentControlSet\Services\HTTP\Parameters\EnableKernelSSL.

Categories: Administration | IIS | Security
Tuesday, 28 March 2006 19:24:04 (W. Europe Daylight Time, UTC+02:00)  #    Comments [0]

 



#  Wednesday, 22 March 2006

As you can see in this blog post, Windows Media Encoder allows for screen recording (option: Capture Screen). Till now I had no need for a screen recording on my x64 box, but today was the day:

I am really, really growing tired of all the x64 annoyances.

Update Installed the x86 version of Media Encoder alongside, et voila, the x86 version delivers.

Categories: x64
Wednesday, 22 March 2006 17:05:28 (W. Europe Standard Time, UTC+01:00)  #    Comments [1]

 



#  Monday, 20 March 2006

It is has landed, you can download the Atlas March CTP here. More information on Atlas itself can be found on the official Atlas site.

Categories: ASP.NET | Cool Download
Monday, 20 March 2006 18:18:11 (W. Europe Standard Time, UTC+01:00)  #    Comments [0]

 

This download contains the agile process guidance that will be shipping with Visual Studio Team System.

Monday, 20 March 2006 14:13:01 (W. Europe Standard Time, UTC+01:00)  #    Comments [0]

 



#  Thursday, 02 March 2006

How to get from here

to here:

Step 1 - enable the Navigation Pane:

Step 2 (if you don't already see it):

You need to click on the up arrow next to the Folders text (it is like an Outlook tab, but rather hard to see).

Categories: Longhorn
Thursday, 02 March 2006 11:42:56 (W. Europe Standard Time, UTC+01:00)  #    Comments [1]

 



#  Wednesday, 01 March 2006

Six short & modular security training modules have been launched:

  • Canonicalization Lab
  • Cookies Lab
  • Cross Site Scripting Lab
  • Regular Expressions Lab
  • SQL Injection Lab
  • Validation Controls Lab
Categories: Security
Wednesday, 01 March 2006 07:40:45 (W. Europe Standard Time, UTC+01:00)  #    Comments [0]

 



#  Friday, 24 February 2006

Brought to you by MSDN TV: Watch the White Hats and the Black Hats battle for the security of Las Vegas, Nevada. Jessi Knapp and Microsoft Security Guru Joe Stagner narrate as the Hackers try to gain control of The Plaza's online money management system and our Security Team tries to stay one step ahead. Watch

Categories: Security
Friday, 24 February 2006 02:52:05 (W. Europe Standard Time, UTC+01:00)  #    Comments [0]

 



#  Thursday, 23 February 2006

On Windows Server 2003, this is the default logging directory for the Hypertext Transfer Protocol (HTTP) APIs, better known by the kernel level http.sys driver. Chances are, you don't know that this directory exists, and what is logged there (except that when you are looking right now, you will be surprised how big that directory is!).

When you are using IIS 6.0, all requests are first received by http.sys, and then passed on to IIS - previously, IIS itself was listening for requests. Http.sys is passing on the requests intelligently, which means that certain requests never even reach IIS. For example, invalid URLs are caught:

2006-02-23 19:05:00 172.179.161.165 1422 195.234.231.66 80 HTTP/1.1 GET /serv<script%20language= 400 - URL -

Most oftentimes it is simple connection timeouts, but to get the most out of the (huge) log files, you should be using LogParser anyways.

The reason why I started this blog entry is actually this: if you don't like the HTTPERR log files on your system disk, you can relocate them. The procedure is detailed in the article Error logging in HTTP API, which also dives into the format of the log file, and which kinds of errors are actually logged there.

Categories: Administration | IIS
Thursday, 23 February 2006 22:22:46 (W. Europe Standard Time, UTC+01:00)  #    Comments [0]

 



#  Sunday, 19 February 2006

On my flight to Seattle today (or yesterday, depending on the time zone) I started to read Professional ASP.NET 2.0 Security, Membership, and Role Management by Stefan Schackow. The book definitely is a must-have for every ASP.NET developer, even if you decide to read one chapter only: A Matter of Trust (#3). This one will save you loads of time when you have to deploy an application into non-full trust environments. However, the other chapters are worthwhile too, like #2 which details exactly which identity is used when by what part of the engine. Bottomline: highly recommended reading.

Categories: .NET | 2 Ohhhh | ASP.NET | Books | Security
Sunday, 19 February 2006 09:21:00 (W. Europe Standard Time, UTC+01:00)  #    Comments [0]

 



© Copyright 2017 Christoph Wille

newtelligence dasBlog 2.3.9074.18820
Subscribe to this weblog's RSS feed with SharpReader, Radio Userland, NewsGator or any other aggregator listening on port 5335 by clicking this button.   RSS 2.0|Atom 1.0  Send mail to the author(s)

 
Don't contact us via this (fleischfalle@alphasierrapapa.com) email address.