I'm trying to call the Ctrl+F function in IE using a javascript function
initiated by an input button on a webpage:
showModelessDialog("/website/find/find.dlg", args);
I copied the find.dlg and findinc.dlg to the webserver so I could call the

Is there a security risk of patching my web server via microsoft update while
the websites are running?  Or should I shutdown IIS prior to doing this?  My
thought is I could update the server and schedule aq reboot t a later time.

I have an asp.net 2.0 Intranet app that is installed to a Win2003
Server running IIS 6.0.  This production server also hosts asp.net 1.1
apps also.  I isolated the two into separate application pool on the
IIS.  My Intranet app loads but on login authentication, for some

This is a little off topic but I am finding security in a non domain
environment totally mystifying
Can anyone help me. I work in a workgroup environment as opposed to domain
controlled. The minute I do anything with reporting services or analysis

Is there a easy way to disbale http Trace in IIS 6 - Windows 2003? I do not
want to install urlscan.
Thanks
A

Windows Integrated authentication works great, but when it fails (because
the user doesn't have the site in the intranet sites for example) they are
prompted for credentials.  Unfortunatly, instead of defaulting to DOMAIN\ it
is COMPPUTER\ and of course that never works.

i need some urgent assistance, we've installed win 2k3 standard edittion and
only .net 1.1 service pack, but when ever we access our site a window pops up
asking us the user name and password, we give the administrator user name and
password, then it works fine and if we dont ...

I need to disable the SSLv2 protocol, and am having problems.  I have
followed the instructions in Article ID : 187498 re: the registry
modifications, but when I re-scan my server, it still shows SSLv2 as a
vulnerability.

I'm having an issue with a self signed certificate.  If I import it
via the "certificate" mmc, into the "Personal" store of the Local
Machine store (or "user", then move it to "local machine"), then
select it for use with a site the SSL does not work (connection drops

I have 3 servers :
- An XP workstation running IIS 6 a Windows 2003 domain
- An Windows file server in the same domain
- An IIS Server NOT in the domain.

When I try to access an Web site hosted in IIS 7, I receive the HTTP Error
403.8 error message. I was told to change the dominaName attribute to be:
<add domainName="[clientmachine]" allowed="true" />.
However, I am not sure where I can change this attribute. In the

I've winxp sp2 with IIS 5.1. I want to enable basic auth: on my virtual
website which is redirecting to a diff: URL. Currently the fwding of url
works without asking any usrname/pswd even though Anonymous is disabled and
Basic auth is enabled. However if I select "A dir located ...

I lost access to the security tab of wwwroot.
I was changing the rights in the security users (security tab) then when I
hit apply all folders from the wwwroot was gone.
I do have administrator rights.

In IIS, I configure the applicationHost.config file by adding <ipSecurity
allowUnlisted="false" />. And I did not put and IP address in the
<ipSecurity> section.
However, I still can visit the Web site that is hosted in IIS from a client

1. I have created Virtual Machine under Virtual Server R2 SP1
   with Windows 2003 as part of workgroup and installed IIS 6.0
2. I could ping this machine by IP address, and I am able to
   access shared folder by using IP address on this Virtual Machine