Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    US charges Samourai cryptomixer founders for laundering $100 million

Featured Deal: A one-year Sam's Club membership is only $14 now

Latest Buyer's Guide:    How to setup a VPN on your router: Detailed walkthrough

Generic User Avatar

Virtual Directory Security in IIS5.0

Started by Jeff Campbell , Dec 02 2009 01:00 PM

  • Please log in to reply
19 replies to this topic

#16 Jeff Campbell

Jeff Campbell
  • Topic Starter

  • Avatar image
  • Members
  • 28 posts
  • OFFLINE
    •  
  • Local time:12:51 AM

Posted 21 December 2009 - 10:32 AM

is there anything in the local security policy manager that could be causing this? just browsing through there i noticed the LAN Manager Authentication level. It is Set for Send LM & NTLM responses right now. Should it be something else?

http://technet.microsoft.com/en-us/library...867(WS.10).aspx

im not sure what to choose.

BC AdBot (Login to Remove)

 

#17 Jeff Campbell

Jeff Campbell
  • Topic Starter

  • Avatar image
  • Members
  • 28 posts
  • OFFLINE
    •  
  • Local time:12:51 AM

Posted 21 December 2009 - 10:56 AM

ahh i think i semi-solved it. went to IIS and changed the anonymous access section. Enabled basic authentication since im SSL it wont matter and disabled integrated windows authentication. now it will actually save the password in the box so i just hit ok instead of retyping it everytime. i really wanted it to not show the box at all but just clicking ok is much much better than before. if anyone knows which settings i need where it wont pop up the box at all after first login that would be great. it does it for any file you open.

#18 Jeff Campbell

Jeff Campbell
  • Topic Starter

  • Avatar image
  • Members
  • 28 posts
  • OFFLINE
    •  
  • Local time:12:51 AM

Posted 21 December 2009 - 11:19 AM

ok another update. tested it on a few other machines and they dont get the popup screen at all. it must be something with my machine that requires that screen popup. so it looks like its fixed. if anyone has any comments on this let me know, im curious if what im doing is right or if it opens my security up.

#19 KamakaZ

KamakaZ

  • Avatar image
  • Members
  • 739 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:03:51 PM

Posted 21 December 2009 - 11:37 PM

You could try running Microsoft's Baseline Security Analyser and see if this shows you any misconfigurations you may have.

#20 hamluis

hamluis

    Moderator


  • Avatar image
  • Moderator
  • 63,789 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:51 AM

Posted 05 October 2023 - 07:09 AM

Topic closed, OBE.

 

Louis


BC Malware Forum

Back to Web Site Development


1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users


  1. BleepingComputer Forums
  2. Internet & Networking
  3. Web Site Development
  4. Privacy Policy
  5. Rules ·