Microsoft IIS

• To: [email protected]
• Subject: Microsoft IIS
• From: Gregory Sutter <[email protected]>
• Date: Sat, 22 Feb 1997 04:06:13 -0500
• Resent-Date: Sat, 22 Feb 1997 04:06:19 -0500 (EST)
• Resent-From: [email protected]
• Resent-Message-ID: <"KF-8tC.A.Oc.KcrDz"@wopr.ml.org>
• Resent-Sender: [email protected]

(from Neutron's weekly zine)

5. Attention MS IIS Users!

	A recent bug found in all versions of Microsoft's
Internet Information Server could make sensitive information
like passwords readily available to anyone on the Internet.
Any file is apparently retrievable with a Web browser, as
long as a dot (or sometimes two dots) is placed at the end
of the URL.
	Microsoft says that this problem is only an issue for
users whose static and dynamic content are stored in the
same directory, and suggests that virtual directory Read
permissions be shut off to prevent this problem.
	A fix should be available sometime this weekend.
Users of this product are advised to consult Microsoft's
informative page at

=============================URL=============================
| http://www.microsoft.com/iis/iisnews/hotnews/security.htm |
=============================================================

--
Gregory S. Sutter                            "How do I read this file?"
mailto:[email protected]                     "You uudecode it."
http://www.pobox.com/~gsutter/gsutter/       "I I I decode it?"

-- 
This message comes to you as a service of the mph-humor list.  No
claims of real or perceived humor are offered.
Sumbissions:  [email protected]
Information:  http://wopr.ml.org/~hunt/mph-humor.html

• Prev by Date: (fwd) 2001 Rereleased!
• Next by Date: World's Best Software
• Prev by thread: (fwd) 2001 Rereleased!
• Next by thread: World's Best Software
• Index(es):
  • Date
  • Thread