Improving Web Application Security: Threats and - CGISecurity

How To:Use URLScanApplies ToSummaryContentsThis information applies to server computers that run the following:● Microsoft ® Windows ® 2000 Server operating systemURLScan is an ISAPI filter that allows Web site administrators to restrict the kind ofHTTP requests that the server will process. By blocking specific HTTP requests, theURLScan filter prevents potentially harmful requests from reaching the server andcausing damage.This How To contains the following items:● Installing URLScan● Log files● Removing URLScan● Configuring URLScan● Throttling request sizes with URLScan● Debugging Microsoft ® Visual Studio .NET with URLScan installed● Masking content headers (banners)● Pitfalls● ReferencesInstalling URLScanAt the time of writing (April 2003), URLScan 2.0 is installed when you runIISLockdown (IISLockd.exe,) or you can install it independently.● Installing URLScan 2.0 with IISLockdown: You can install URLScan 2.0 as part ofthe IIS Lockdown Wizard (IISLockd.exe). IISLockd.exe is available as an Internetdownload from Microsoft’s Web site at: http://download.microsoft.com/download/iis50/Utility/2.1/NT45XP/EN-US/iislockd.exe.