You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
28 lines
1.5 KiB
28 lines
1.5 KiB
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML//EN">
|
|
<HTML>
|
|
<HEAD>
|
|
<meta name="GENERATOR" content="Microsoft FrontPage 4.0">
|
|
<Title>Disabling Scripting</Title>
|
|
<STYLE type="text/css">
|
|
BODY {background: #e0e0f0; font-family: Arial; font-size: 10pt}
|
|
</STYLE>
|
|
</HEAD>
|
|
|
|
<H3>Disabling Scripting</H3>
|
|
|
|
<P>IIS allows a user to set the script and execute permissions on a Virtual Directory separately
|
|
from its Write permissions. Normally, administrators who wish to allow script and program execution on a virtual
|
|
directory disallow writing to that virtual directory (this will keep clients from uploading executable scripts
|
|
or programs to a directory and executing them).
|
|
|
|
<P>However, when a virtual directory is enabled for BITS uploads, then even though Write permissions on the
|
|
virtual directory has been disallowed, clients can write to this directory via BITS uploads. To protect the server,
|
|
BITS disables all Script and Execute permissions on a BITS-Upload enabled Virtual Directory.
|
|
To make sure that this virtual directory is secure, BITS Server extensions will check to make
|
|
sure that these permissions are disabled before responding to any client request for uploading
|
|
data. If these permissions are enabled at any time, BITS Server Extensions will deny all
|
|
upload requests thereafter, until the permissions are disabled again. Every time the BITS Server
|
|
extension denies a request in such an environment, it will write a log entry in the IIS logs.
|
|
|
|
</BODY>
|
|
</HTML>
|