Browse by Tags

All Tags » IIS » Networking   (RSS)
IIS WebDAV Security Advisory
19 May 09 05:49 PM | tristank | 0 Comments   
Today, an IIS 5.0 to 6.0 security advisory was released: Vulnerability in Internet Information Services Could Allow Elevation of Privilege http://www.microsoft.com/technet/security/advisory/971492.mspx If you’re using WebDAV on any version prior to 7.0 Read More...
What does it mean when there's no "broken page" icon in IE8?
10 September 08 06:59 PM | tristank | 0 Comments   
I was just catching up on some of my RSS feeds, and noticed that one of the pages I was at didn't have a broken page icon, but wasn't working quite right (some broken javascript in the photos area, I'm guessing... I'll investigate that next). I wondered Read More...
The Cat's Out Of The Bag: ISA Server will become ForeFront TMG
09 April 08 05:21 PM | tristank | 1 Comments   
So, we all know that ISA 2006 doesn't work on Windows Server 2008 . Massive architectural changes to the IP stack, blah blah, etc, etc. People (uh, yeah, just "people") have been asking about what's to become of ISA Server for a while: "There's Read More...
Post-SP2 TCP Offload Fix
17 March 08 02:31 PM | tristank | 2 Comments   
I've mentioned Chimney before . Now, a new Windows Update fix for TCP Offload, which turns it off . It was on by default in Windows Server 2003 SP2, so if your NIC supported Offload, or RSS, or that other thing I can never remember, it was enabled. But: Read More...
"Stacking" NTLM Authentication
11 March 08 05:30 PM | tristank | 0 Comments   
This question came up today (well, actually, it was about four weeks ago I started typing this, but bear with me), and it's been a little while since I've rambled about authentication protocols, so let's enjoy a nice, calm discussion on a Monday Tuesday Read More...
MaxUserPort - what it is, what it does, when it's important
11 March 08 05:17 PM | tristank | 0 Comments   
What can we say about MaxUserPort that hasn't already been said? Not a lot, it would seem. He's a beautiful dancer, perhaps? Ahh, such gentle humour, and nary a kitten drowned anywhere. But TCP port shenanigans are fairly frequently misunderstood, so Read More...
SetSPN improvements in Windows Server 2008! W00t!
21 December 07 05:21 PM | tristank | 0 Comments   
All this stuff is based on a prerelease (RC1) version of Windows Server 2008 and may change before final release. Cheques may not be honoured. I had a happy moment one night in India when the trainer for our IIS 7.0 TTT course discussed some of the Kerberos-related Read More...
401.3, you say? Not 403?
22 October 07 08:35 PM | tristank | 1 Comments   
You're running an IIS 6.0 website, and you have a virtual directory configured for anonymous authentication only (that is, you've un ticked Integrated Windows Authentication). Using a web browser, you try to access a file in that virtual directory. http://example.com/vdir/something.txt Read More...
Netmon vs Chimney
23 July 07 02:22 PM | tristank | 1 Comments   
I recently encountered TCP Chimney for the first time in the wild. Short version: Chimney is an offload technology that allows the NIC to deal with up to X TCP connections, with any overflow being handled by Windows. All good: get the NIC dealing with Read More...
KDC_ERR_BADOPTION when attempting constrained delegation
18 June 07 06:50 PM | tristank | 1 Comments   
Hit this earlier while working with someone else on a Kerberos delegation problem. All the SPNs looked right and were registered against the right accounts; all the App Pools were Network Service; from what I'd been told, everything should have been working... Read More...
IIS 7 - LH Beta 3 Launch Stuff
26 April 07 07:45 PM | tristank | 0 Comments   
Tons of cool new things in Longhorn Beta 3 on the IIS front , including: ... the first beta of our new FTP server . This isn't a part of Longhorn Server Beta 3, but it is available today and offers a lot of brand new features for you to experience today. Read More...
Kerbi Wiki
12 April 07 05:35 PM | tristank | 1 Comments   
Back from another holiday (I call it the Arnold Rimmer technique) I've been trying to collect, rework and refurbish my thoughts on web-based Kerberos stuff in a personal Wiki. You're welcome to peruse it with the usual disclaimers that I'm frequently Read More...
I want to publish a website to the Internet. How do I enable Kerberos?
02 March 07 11:44 AM | tristank | 0 Comments   
Ya don't. You can't win. But there are alternatives to fighting. Why Not? Windows Kerberos doesn't work in an Internet scenario, it's intranet-only. the client machine must be a member of the same Active Directory forest as the target site. You just can't Read More...
NLB Ain't Application-Aware
01 March 07 04:04 PM | tristank | 1 Comments   
It's been ages since I touched on anything wibbles-related , but I realized I'd neglected a very common query: If one of my applications is under load, will Network Load Balancing route/move/transfer all the additional load to the other server? No . As Read More...
IIS6 Perf Tweak for Intranets
25 January 07 11:14 AM | tristank | 0 Comments   
Kerb authentication is performed at each request, rather than each connection. This can end up being a little top-heavy. 917557 FIX: You may experience slow performance when you use Integrated Windows authentication together with the Kerberos authentication Read More...

Search

This Blog

Syndication

Page view tracker