I have a new windows web server running server 08 and IIS 7.  whenever it is
scanned it is still accepting ssl v 2.0 connections and it causes us to fail
our pci compliance vulnerability scans.  i have read several articles on how
to do this however my server has none of the keys ...

Anyone have any issues with Digest auth and firefox against IIS7? It will
authenticate, but pops up the login box twice on the initial page and each
link thereafter.  Is this a known bug? Or am I missing something. Unless its
just an issue with the realm, but it works in all ...

RE: fileio class access to file shares through Virtual Directory ..
An object named "\\computername\localusername" cannot be found
I have a simple lab with no AD. One web server and one file server.
One of my test applications is Sharepoint.

I was wondering if it is possible, natively or add-in, to enable IIS to
require a client "machine" certificate (like IPSEC) instead of the common
user certificate.
Thanks - Gabriele.

I am a complete novice in IIS/ASP but have just turned an old Access
database into my first ASP application on IIS6 with SQL 2K back end.
The app is for internal use on a corporate lan, so I am using integrated
Windows authentication with no anonymous access so that I can identify ...

I have an IIS 6 web server that hosts multiple web sites.
i would use a dedicated user for each web site instead of using the default
anonymous user (IUSR_ServerName).
I think that's possible, but my question is about the security level i have

Hi all, I need an information for setting up a good security in my web
infrastructure.
I've got an IIS 6 dmz server that host a web site. In this web site there's
an asp page that put a file into a shared directory on a server that resides

Hi everyone, we have a POP3 service running on a Win2K server using Local
Windows Account authentication and Secure Password Authentication is not
enabled. There is one domain with one email account.
We are unable to login via Telnet from another server using that local

I have two  Windows 2003 servers hosting an ASP.NET site. Both servers are
using Windows Authentication.  Everything was working fine, but suddenly my
users are not able to access the dev site.  They are still able to access
prod fine.  When attempting to access the site they are ...

I have a single ssl website which can be pulled up on the browser using two
methods:  https://www.website.com and https://website.com.  I currently have
both a wildcard ssl certificate *.website.com and a normal ssl
www.website.com.  After install the wildcard ssl certificate, I ...