Jump to content

  • Log in with Facebook Log in with Twitter Log In with Google      Sign In   
  • Create Account

Subscribe to HRA Now!

 



Are you a Google Analytics enthusiast?

Share and download Custom Google Analytics Reports, dashboards and advanced segments--for FREE! 

 



 

 www.CustomReportSharing.com 

From the folks who brought you High Rankings!


More SEO Content

International SEM  | Social Media  |  Search Friendly Design |  SEO |   Paid Search / PPC  |  Seminars  |  Forum Threads  |  Q&A |  Copywriting |  Keyword Research   |  Web Analytics / Conversions  |  Blogging  |  Dynamic Sites  | Linking  |   SEO Services  |  Site Architecture  | Search Engine Spam  | Wrap-ups  | Business Issues |  HRA Questions  |  Online Courses

Sponsored Content

 

 
 

Photo
- - - - -

Security Risks With Server Side Includes On Iss

Started by DJKay , Dec 29 2004 01:46 PM

  • Please log in to reply
3 replies to this topic

#1 DJKay

DJKay

    HR 5

  • Active Members
  • PipPipPipPipPip
  • 352 posts

Posted 29 December 2004 - 01:46 PM

Hi,

May be I need to check out an ISS/IT forum, but since this is my favorite forum, I thought I would post this and see.

What are the security risks associated with server side includes in ISS in server configuration?

Thanks in advance.

Best,

DJKay

#2 chrishirst

chrishirst

    A not so moderate moderator.

  • Moderator
  • 5,881 posts
  • Location:Blackpool UK

Posted 29 December 2004 - 02:51 PM

depends on many things;

do you mean server side includes (SSI), or server side scripting (ASP or PHP) using includes?

then there is which server technology? because each combination of OS and webserver brings different issues.

#3 DJKay

DJKay

    HR 5

  • Active Members
  • PipPipPipPipPip
  • 352 posts

Posted 29 December 2004 - 03:31 PM

Hi,

Sorry I was not clear. I am asking about Server Side Includes in an Internet Information Server environment.

Thanks in advance.

Mary Kay

#4 chrishirst

chrishirst

    A not so moderate moderator.

  • Moderator
  • 5,881 posts
  • Location:Blackpool UK

Posted 29 December 2004 - 04:19 PM

Nothing inherent with SSI on IIS provided the server is patched up. There can be a limited risk with directory traversal attacks if parent paths are enabled and the file permissions are weak but it is easily fixed and this applies more to scripting than SSI .
Back to Technology and Coding


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. HRF SEO Forum
  2. Technobabble
  3. Technology and Coding
  4. *READ FIRST*--> Forum Rules