Archive for the Category ◊ IIS ◊

Monitoring IIS Web Server with Logparser and the RRDtool
Thursday, March 12th, 2009 | Author:

Introduction

We read allot of articles on how one can use MRTG as an Intrusion detection tool or to creating traffic graph for a particular network subnet or a single IP address on Linux platform with Apache web server. But we find very few that allow us to have graphs on Windows Dedicated server with IIS Web Server.

Here are some steps that can be used to create graphs on Windows Dedicated server with IIS as the web servers. And there is no need to take all the efforts to configure MRTG as we can simply have graphs with the use of logparser and the RRDtool from Tobias Oetiker and you can use the RRDtool perfectly without the rest of MRTG.

more…

Plesk SitePreview Not Working On Windows
Tuesday, March 10th, 2009 | Author:

Most of our users have this problem with there Windows Plesk Dedicated hosting as well as Windows Shared hosting packages with recent Parallels Plesk versions. I have had so many instance of support about the sitepreview not working on our Windows Shared Servers with Plesk for different reasons and I had to scratch my head to get things sorted for our valuable Windows dedicated hosting customers. And it is an important feature for our Shared hosting customers without the dedicated IP address to check their site before moving their name server to us. So I decided to write this blog with the steps to troubleshoot the problem with Plesk sitepreview in few simple steps. I will try and put every thing that I have figured while investigation.

There are 3 types of problems with site preview in Plesk:

more…

Write Permissions on Plesk Windows Server Get Removed
Saturday, March 07th, 2009 | Author:

This has been a regular problem with most of our Windows dedicated Server Clients as well as Windows Shared hosting client that has Plesk 8.4 installed on them, specially for those who need write permissions on web user for the ASP .NET/MSSQL and PHP/MySQL application, that the write permissions on the folder get removed own its own without any changes being made by us or the client. After allot of scratching and investigation we were finally able to reveal the secrete about the permissions issue. The problem was not with Plesk but the way we use to set permissions on the folder.

plesk-86-premissions-problems

While I was searching for the solution I found the KB articel on Parallels sites below:

http://kb.parallels.com/en/1147

more…

Point Domain to Another IP Without Changing DNS Name Servers
Saturday, February 28th, 2009 | Author:

One can point your site to any designated IP address you want without changing the Name server of your Domain. Yes, you will be able to view/test your site on new server without changing the name servers as well as having trouble of using site Preview options in Control panel like Plesk. This option is also helpful in the case of some site that use .js script in their codes since those scripts don’t work in Plesk site preview option. Specially in case of sites that work on DotNetNuke [DNN].

So here we go:

On your local machine, [AND NOT THE SERVER]:
Goto START >> Run >> and Type:
notepad "C:WINDOWSsystem32driversetchosts"
And hit Enter

more…

Windows Error Reporting
Saturday, December 06th, 2008 | Author:

C:\DOCUME~1\USER~1\LOCALS~1\Temp\WER8bd7.dir00\w3wp.exe.mdmp

C:\DOCUME~1\USER~1\LOCALS~1\Temp\WER8bd7.dir00\appcompat.txt

Above error pop ups when Error Reporting is enabled on your system and w3wp.exe faces an error.
Windows Error Reporting increases Hard Disk space , by adding above pop ups in two different dump files i.e. HDMP and MDMP
HDMP (Heap Dump) – Uncompressed error dump file generated by Windows when a program has an error or crashes.
MDMP (Mini Dump) – Compressed Heap Dump files are saved as Mini dump (MDMP) files and may be sent to Microsoft as part of an error reporting process.

more…

How to install phpMyAdmin on Windows
Saturday, November 15th, 2008 | Author:

These steps can be followed on Windows 2000, Windows NT servers, Windows 2003, Windows 2008 and Windows XP.

For steps on Linux refer the link below:

How to install PHPMyAdmin on Linux

How to install phpMyAdmin 2.11 on Windows Desktop and Server

Here are steps that will help you installed PHPMyAdmin on a Windows server.

REQUIREMENTS:

>> PHP 4.3/4.4/5.1
>> MySQL 4.0/4.1/5.0

DOWNLOAD:

This installation was tested on phpMyAdmin-2.11.1
You can select the file from PHPMyAdmin Downloads

more…

Secure your MS SQL Database Connection String
Tuesday, November 11th, 2008 | Author:

Ways to secure your MS SQL connection string in ASP .NET.

We have seen allot of people looking to have the best option to secure the connection string in their ASP .NET code to connect the MS SQL database since it contains the username and password of their database. It is very important to use a secure method for corporate clients and those who save Credit Card details in their MS SQL database. Or they will easily get hacked and all the important data will be exploited by the hacker. And also for those who store important data in MSSQL.

Here are the list of methods that can be used to secure your MS SQL connection string in your ASP.NET application.

METHODS:

1. Using a DSN connection string:

more…

Remove Viruses without using Antivirus !
Friday, October 31st, 2008 | Author:

One of the ways by which Computers get affected by viruses is through USB Pen drives. Anti viruses are unable to detect them and even if they do, in most cases they are unable to delete the virus. Following are the precautions you can take when plugging USB Drive on your Computer.

Whenever you plug a USB drive in your system (which you think is infected by virus), do not open it –  Do not click ‘OK’ !
click on ‘Cancel’. Now open Command Prompt by typing ‘cmd‘ in run box.
Type dir /w/a and press enter.
Above command will display list of files in pen drive. Check in the list if the files are not

* Heap41a
* New Folder.exe
* Autorun.inf
* svchost.exe
* Ravmon.exe
* or any other exe file which may be suspicious.

If any of the above files are present in the list, then your USB drive is infected. To remove these files, type the following command in command prompt
attrib -r -a -s -h *.* and press enter.
This will remove from files  Read Only, Archive, System and Hidden attributes .

The files which you will now be looking on are the junk files (viruses) and can be deleted using  del command. Delete all those files which you find suspicious. To be on a safer side, just scan again your  USB Pen drive using a anti virus to check whether it is free of virus or not.

Host Header Settings
Tuesday, October 21st, 2008 | Author:

To set more than one website on server you are required to set Host Headers
Procedure to set Host Headers
1) Load  IIS (Start >>> Run>>>type “inetmgr” hit enter)

2) On left pane, expand server name, then click “Web Sites“>>>right click on right pane>>>select  New>>>Web Site

3) Website Creation Wizard will open , here you have freedom to write absolutely anything (we will write – Testing) >>> Click Next

4)Under IP address and Port settings
Enter Ip address and port number (Default port – 80) and Host Header for the website >>> Click Next

5) Enter the path for Websites Home Directory and tick (check) “Allow anonymous access to this website” >>> Click Next

6) Under Website Access Permissions , necessary permissions for using ASP , Run Scripts can be used as per requirement. >>> Click Next

7) Click Finish and you’re done.

Protect Apache WebServer From DDOS with mod_evasive
Sunday, October 12th, 2008 | Author:

What is Apache ?

The Apache HTTP Web Server, we all well know it as Apache, is one of the world’s most widely used Web servers. It is very popular because of its strong security features, most outstanding performance & the fact that it does cost us any thing. It comprehensively supports and it is most recommended for MySQL & PHP/Perl/Python (and now also supports Ruby) programming languages.

mod-evasive-apache-DDOS

It’s available for all flavours of Unix (GNU/Linux & UNIX systems), Microsoft Windows including other OS as well, for Example Linux distros such as  RedHat, SuSe, Debian, CentOs, Gentoo, Mandrake, Fedora, etc etc. Apache is used to serve both dynamic static content & static Web pages on the Internet. Some web applications are developed expecting the features & environment that Apache provides. It is one of the most basic feature in the hosting world is what allows your website to be seen by the world.

What is a DDoS attack ?

more…

IIS Optimizing & Monitoring Tools
Thursday, October 09th, 2008 | Author:

Here are some useful tools that help us in configuring IIS server to be more secure and less resource consuming:

1. IIS Passwords Sync:

IIS 6.0 web sites run under anonymous user accounts. It is IUSR_<machine name> (by default) or other user accounts created by your web hosting control panel. The users’ passwords are set automatically set and are never known. However, sometimes for some reason the passwords get out of sync or corrupted and need to be reset. The easiest way to reset these passwords is to use IIS Passwords Sync program. It extracts the passwords that Microsoft IIS 6.0 has in its metabase and updates the accounts in “Local Users and Groups” to use that passwords.

DOWNLOAD LINK

2. IIS Pool:

With IIS Pool tool we can easily search the problematic sites which have default application pool.

IIS Application Pools Monitoring and Analysis:

This program allows monitoring of IIS 6 application pools. All the monitoring data is stored in log files. It is possible to analyze a pool to find a website (or a virtual application) using too much resources. …

Overview -

IIS Application Pools Monitoring and Analysis:

* This program allows monitoring of IIS 6 application pools.

* All the monitoring data is stored in log files.

* It is possible to analyze a pool to find a website (or a virtual application) using too much resources.

Features -

* IIS application pools monitoring

* IIS application pools analysis

* Find websites using too much resources

DOWNLOAD LINK

3. IIS Report:

Overview -

IIS Report is a command line tool. It allows us to create different IIS related reports. For example it can get the list of all SSL websites and sort it by IP address, or get the list of all websites and sort it by application pool name and then by website name, …

There is no installation required. Just download and unrar the archive file. Then start the program with:

C:\>iisreport.exe /?

to get more information and see all the parameters available.

Benefits -

* Easy-to-use

* Fast

* It is possible to import the reports with Excel

* It is possible to parse the reports with VBS or BAT programs and other administration applications.

DOWNLOAD LINK