I set up an IIS6.0 server and have some downloads that are executable files.
When I try to download them using both IE and FireFox, it returns a http404.
I thought I had found a solution online
http://blogs.msdn.com/david.wang/archive/2005/07/11/Allow_file_downloads_on_IIS_
6.aspx ...

We are running win 2K and IIS.
We have 2 websites configured on the same box,  each running on different IP
addresses. THere are subdomains pointing to each of the IP addresses.
We turned on SSL and have 2 different certificates for each site (running on

I administer a Windows Server 2003 running IIS 6. I also administer multiple
web sites that are hosted on this server. One of the end-users maintains some
Access databases that are contained in one of the virtual webs. He gets the
following error message from time to time:

After i locked down a Win2003 Server I installed a certificate, checked the
"Require secure channel (SSL)" , but i can still logon to this web
application over http. https is working also fine.
Any Ideas?

We have single server that we are using for development, and have invited
some 3rd party developers to create some aspnet content on the server. They
have requested Terminal Services Login (remote desktop). WHAT is the minimal
security group or Best Practice for giving outside ...

I have a website on an intranet that uses php and all of our users
utilize smart cards for login to active directory.  Can someone point
me to something that shows how to implement smart card authentication
on iis/php?  Right now, the php page queries for the username/password

I've had some issues with IP addresses appearing to be automatically added
to IP address restrictions (at the 'web sites' level) and being denied access
on an exchange front end server. This is affecting OWA users as it prevents
access to their email.

The "Send errors to browsers" property under ASP debugging settings should
be turned off by default. Like in asp.net no debug info should be send to
the browser unless it is explicitly turned on.
This will prevent many attacks, such as sql injection.

(I am hoping for some inspiration here)
We have a problem which has appeared in the past few weeks where our
laptop users remotely connect with XP SP1 and SP2 laptops to Windows
2003 SP1 AD network using Cisco VPN client. Transport is one of:

I have a problem with a accessing sharepoint web site using integrated
authenication,
If i use http://ip address it works fine.
If I add a entry to the host file of the client machine ip address

Our dev team is in the midst of a code migration from old ASP to PHP. In the
process of migration, we need an ASP form to run a php-win command in the
background. This works fine if the AppPool identity is LocalSystem, but the
php-win quietly does nothing if I set AppPool ...

Hi all,
I'm having a problem with IIS server. I'm got a collection of excel
spreadsheets and word documents available on a website. The files are for
viewing only (i.e., read only). When I click on a link to download a word

I have a LAN 2003 server running IIS for WSUS and DeskNow WebMessenger
jabber server.  No public exposure for the IIS.
On a recent security audit by outside consultant, they recommended the
following:

Can I have more than one IUSR_ account per site
If the main site has the default account
can I specify a different one for a folder in the site
and still maintain the default for the rest of the site?

I have a W2000 server running IIS 5 for my local intranet and a help desk
website. We use basic authentication and I have set the default domain to my
local domain name. When a user attempts to login the login is rejected unless
the user enters his login as domain\username. When ...