One of the benefits of completely blocking port 80 if you never intend to use it is that most HTTP exploits/worms will just move onto the next web server.
We don't intend using port 80, so I'd rather completely remove access to it than create web applications that do redirections. - Peter H. -----Original Message----- From: Adrian Marshall [mailto:[EMAIL PROTECTED]] Sent: 11 October 2002 11:11 To: [EMAIL PROTECTED] Subject: Re: [ cf-dev ] (SOT) How can I disable listening on port 80 in IIS and keep SSL on port 443? If you're using ColdFusion then can't you check if cgi.https is set to on and if not redirect? Then you've also got the opportunity to tell the user to use https in future, rather than just blocking access. Adrian _____________________________________________ adrian marshall lead hat limited 28-29 great sutton street . london . ec1v 0ds http://www.leadhat.co.uk/ e: [EMAIL PROTECTED] p: 020 7566 9450 f: 020 7566 9458 ----- Original Message ----- From: "Peter Harrison" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, October 11, 2002 10:52 AM Subject: RE: [ cf-dev ] (SOT) How can I disable listening on port 80 in IIS and keep SSL on port 443? > Oh well, looks like IIS is flawed in that small way. > > We'll do port filtering. > > > > -----Original Message----- > From: Peter Harrison [mailto:[EMAIL PROTECTED]] > Sent: 11 October 2002 10:03 > To: [EMAIL PROTECTED] > Subject: [ cf-dev ] (SOT) How can I disable listening on port 80 in IIS > and keep SSL on port 443? > > > Hi > > How can I disable listening on port 80 (HTTP) in IIS 5, yet keep HTTPS (SSL) > on port 443? (force people to use HTTPS) > > Is there an IIS "policy" which can do this? > > I would rather a pure IIS configuration solution if possible. Port filtering > by a firewall is an option I don't want in this case. > > Thanks. > > - Peter H. > > > -- > ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ > > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > For human help, e-mail: [EMAIL PROTECTED] > > > -- > ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ > > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > For human help, e-mail: [EMAIL PROTECTED] > -- ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For human help, e-mail: [EMAIL PROTECTED] -- ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For human help, e-mail: [EMAIL PROTECTED]
