i'm new to this thread, so sorry if this has been suggested: have you tried
just applying microsoft's hot fix for the .htr vulnerability? and same for
the .printer one? that's what i did in each case and it works fine.
-----Original Message-----
From: Priscilla Yamin [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 04, 2001 6:22 AM
To: CF-Server
Subject: Re: viewing source code
This sounded reasonable but when I tried it ColdFusion Quit working and the
management console would not come back up. After rebooting again. NT
restored the .htr extension and cold fusion started working again.
----- Original Message -----
From: "Bryan LaPlante" <[EMAIL PROTECTED]>
To: "CF-Server" <[EMAIL PROTECTED]>
Sent: Friday, May 04, 2001 2:12 AM
Subject: Re: viewing source code
> They are probably referring the .htr bug. Go to the IIS management console
> and right click on the web site you want to check and go to properties. On
> the Home Directory tab click on configure and look at the list of
> extensions. If you see the .htr extension, remove it. Do this for any web
> site accessible to the outside world.
>
> Bryan
>
> ----- Original Message -----
> From: "Priscilla Yamin" <[EMAIL PROTECTED]>
> To: "CF-Server" <[EMAIL PROTECTED]>
> Sent: Thursday, May 03, 2001 2:59 PM
> Subject: viewing source code
>
>
> > This is a multi-part message in MIME format.
> >
> > ------=_NextPart_000_0058_01C0D3EA.088CB120
> > Content-Type: text/plain;
> > charset="iso-8859-1"
> > Content-Transfer-Encoding: quoted-printable
> >
> > Someone sent me an email that said our IIS server has a well known bug =
> > that allows people to view the CF source code.=20
> >
> > Is anyone familiar with this? And is this something to be concerned =
> > about?
> >
> >
> >
> > ------=_NextPart_000_0058_01C0D3EA.088CB120
> > Content-Type: text/html;
> > charset="iso-8859-1"
> > Content-Transfer-Encoding: quoted-printable
> >
> > <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
> > <HTML><HEAD>
> > <META http-equiv=3DContent-Type content=3D"text/html; =
> > charset=3Diso-8859-1">
> > <META content=3D"MSHTML 6.00.2462.0" name=3DGENERATOR>
> > <STYLE></STYLE>
> > </HEAD>
> > <BODY bgColor=3D#ffffff>
> > <DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
> > size=3D3>Someone sent me=20
> > an email that said our IIS server has a well known bug that allows =
> > people to=20
> > view the CF source code. <BR><BR>Is anyone familiar with this? And is =
> > this=20
> > something to be concerned =
> > about?</FONT><BR><BR></FONT></DIV></BODY></HTML>
> >
> > ------=_NextPart_000_0058_01C0D3EA.088CB120--
> >
>
> --------------------------------------------------------------------------
> ----
> > To unsubscribe, send a message to [EMAIL PROTECTED]
with
> 'unsubscribe' in the body or visit the list page at www.houseoffusion.com
> >
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
------------------------------------------------------------------------------
To unsubscribe, send a message to [EMAIL PROTECTED] with
'unsubscribe' in the body or visit the list page at www.houseoffusion.com
