Leaked source code of windows server 2003
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
|
|
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML//EN"><HTML><HEAD><meta name="GENERATOR" content="Microsoft FrontPage 4.0"><Title>Disabling Scripting</Title><STYLE type="text/css"> BODY {background: #e0e0f0; font-family: Arial; font-size: 10pt}</STYLE></HEAD>
<H3>Disabling Scripting</H3>
<P>IIS allows a user to set the script and execute permissions on a Virtual Directory separately from its Write permissions. Normally, administrators who wish to allow script and program execution on a virtual directory disallow writing to that virtual directory (this will keep clients from uploading executable scriptsor programs to a directory and executing them).
<P>However, when a virtual directory is enabled for BITS uploads, then even though Write permissions on the virtual directory has been disallowed, clients can write to this directory via BITS uploads. To protect the server, BITS disables all Script and Execute permissions on a BITS-Upload enabled Virtual Directory. To make sure that this virtual directory is secure, BITS Server extensions will check to make sure that these permissions are disabled before responding to any client request for uploading data. If these permissions are enabled at any time, BITS Server Extensions will deny all upload requests thereafter, until the permissions are disabled again. Every time the BITS Server extension denies a request in such an environment, it will write a log entry in the IIS logs.
</BODY></HTML>
|
