I will look into this option thanks Bert. ------Original Message------ From: Bert Van Kets To: [email protected] To: PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] Masking URLs in IIS Sent: Oct 5, 2010 3:33 AM
IMHO the only way you can do it is by using a proxy that redirects the requests to the final destination. Without a proxy, the browser will have to know the final address of the site (the one you are trying to hide) to request the data. The requests can be sniffed and the final address detected, even if you hide it from the address bar. If you can set up a "public" URL on the same server, you can define that to use server side redirects. This functions the same way as a proxy without the need for another machine. Just my 0.02$ Bert On 05/10/2010 01:20, Sherwyn wrote: > Hello All, > > I would like to know what's the most secure way of masking your URLs. > Example would be if I have http://servername.domain.com:234, if I need to put > this link on a website how can I convert this to something else that is not > telling everyone the server name and what port I have open? > > The web servers are all running IIS. > > Thank you, > Infolookup > http://infolookup.securegossip.com > www.twitter.com/infolookup > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > Infolookup http://infolookup.securegossip.com www.twitter.com/infolookup _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
