????? ????? ???? URLScan

?????? ????????? ?????? ?????????
???? ???????: 326444 - ??? ???????? ???? ????? ????? ??? ???????.
???? ???? ????? ?????????? ??????? ??? Microsoft ????? ??????? ?????? (IIS) ??????? 7.0 ????? Microsoft Windows Server 2008. IIS 7.0 ????? ???? ?????? ??????? ??? ???? ?????. ????? ?? ????????? ??? ???????? ??? ????? ??????? IIS ?? ?????? ???? Microsoft ?????? ??? ?????:
http://www.microsoft.com/technet/security/prodtech/IIS.mspx
????? ?? ????????? ??? IIS 7.0 ?? ?????? ???? Microsoft ?????? ??? ?????:
http://www.iis.net/default.aspx?tabid=1
????? ???? | ?? ????

?? ??? ??????

??????

???? ??? ??????? ???? ????? ??? ????? ????? ???? URLScan ????? ???? ??? ?? ????? ??????? ?????????.

????? URLScan

?????? URLScan ?????? Microsoft ??????? ?????? ???? ??? Network (MSDN):
http://msdn2.microsoft.com/en-us/library/aa302368.aspx
?????? ??? ??????? ??????? ???? ??? ????? ???????? ??????? ?????? ?? "????? ??????? ?? Microsoft:
307608???????? URLScan ??? IIS

????? ??? URLScan.ini

??? ????? ????? ???? URLScan ???? URLScan.ini ????? ??????? ?? ?????? %WINDIR%\System32\Inetsrv\URLscan. ?????? URLScan ??? ??? ????? ?? ???? ?? ??? ??????? ?????? ????????? ???????? ?? ?? ???? ?????.

?????? ??? ????? ????? ????? ??????? ?????? (IIS) ????????? ????? ???????. ??? ????? ???? ????? ?????? ???? ???? ???? ?? ????? ????? "IISRESET ?? ???? ???????.

????? ??? URLScan.ini ??????? ???????:
  • [????????]: ??? ?????? ???? ?????? URLScan ????.
  • [AllowVerbs] ? [DenyVerbs]: ??? ?????? ????? ??????? (???? ????? ?????? HTTP) ???? URLScan.
  • [DenyHeaders]: ???? ??? ?????? ???? HTTP ??? ????? ??? ?? ??? HTTP. ??? ??? HTTP ????? ??? ??? ???? HTTP ??????? ?? ??? ?????? URLScan ??? ?????.
  • [AllowExtensions] ? [DenyExtensions]: ????? ??? ?????? ?????? ????? ??????? ???? ???? URLScan.
  • [DenyURLSequences]: ???? ??? ?????? ????? ??? ????? ??? ?? HTTP ?????. ???? URLScan ????? HTTP ???? ????? ??? ????? ???? ???? ?? ??? ??????.
??? ??? ??? ?? ???? ?? ?????? ?? ???????? ?? ??? ???????.

?????? [Options]

?? ?????? [Options] ? ????? ????? ??? ?? ???????? URLScan. ????? ?? ??? ?? ??? ?????? ??????? ??????:
OptionName= OptionValue
???????? ???????? ? ????? ?????????? ??? ???:
  • UseAllowVerbs = 1

    ?????????? ??? ????? ??? ?????? ??? 1. ??? ?? ????? ??? ?????? ??? 1 ? URLScan ???? ????? HTTP ???? ?????? ??????? ???? ??? ????? ?? ?????? [AllowVerbs] ???. URLScan ???? ??? ????? ?? ?????? ??? ???????. ?? ???? ????? ??? ?????? ??? 0? URLScan ?????? ?????? [AllowVerbs] ?? ????? ?? ??? ???? ???? ??????? ???? ?????? ??????? ???? ??? ????? ?? ?????? [DenyVerbs].
  • UseAllowExtensions = 0

    ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? ??? ?????? ??? 0 ? ??? URLScan ????? ?????? ????? ??????? ???????? ?? ?????? [DenyExtensions] ???? ???? ?????? ??? ?????? ????? ??????? ??????. ??? ?? ????? ??? ?????? ??? 1 ? ???? URLScan ??? ?????? ??????? ??? ???????? ???? ?? ????? ?? ?????? [AllowExtensions] ?? ???? ???? ????? ??? ????? ????.
  • NormalizeUrlBeforeScan = 1

    ????? IIS ??????? ???? ??? ????? URL. ???? ???? ??? ?? ??? ??????? ??? ?????? ?? ????? ?????? ??????? (%) ??????? ???? ????. ??? ???? ??????? ????? % 20 ??? ?????, ??? ??? ??? http://myserver/My%20Dir/My%20File.htm ??? ??? http://myserver/My File.htm Dir/My. ??????? ?? ????? ?? ????? URL ?????. ?????????? ??? ????? ??? ?????? ??? 1. ??? ?? ????? ?????? NormalizeUrlBeforeScan ??? 1 ? URLScan ?????? ????? ???? ?? ?? ??????. ??? ?? ????? ??? 0 ? URLScan ?????? ????? undecoded ????? ?? ???. ????? ??? ?????? ??? 0 ????? ???? URLScan ??? ????? ????? ?? ???????.
  • VerifyNormalization = 1

    ???? ???? ?? ???? ?????? ??????? (%) ???? URL ?????, ???? ??????? ?? ????? ??? ??? ?????? ??? ???? ???? ????? ????? - ?????. ?? ???? ???? ???? ?? IIS ???? ??? ???? ??? ?? ??? ????. ?????????? ??? ????? ??? ?????? ??? 1. ??? ?? ????? ?????? VerifyNormalization ??? 1 ? URLScan ???? URL ?????. ?? ???? ?????? ?? ???? ???? ????????? URL ??? ??????? ????? ??? ??????? ?????? ? URLScan ??? ?????. ???? ??? ??? ??? ??????? ???? ????? ??? ????? ??? ?????.
  • AllowHighBitCharacters = 0

    ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? ??? ?????? ??? 0 ? ???? URLScan ??? ????? ???? ????? ??? ???? ??? ASCII. ???? ??? ????? ????? ?? ????? ???? ?? ???? ????? ?????? ?????? ????? ??????? ?????? ??? ??????? ??? ??????? ??? ??????????.
  • AllowDotInPath = 0

    ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? ??? ?????? ??? 0 ? URLScan ???? ?? ??? ???? ????? ??? ??? ???? (.). ??? ???? ??????? ????? ?????? ?????? ????? ??????? ??????? ?? ???? ??? ???? ??? ??? ??? ?? ???? ??????? ?? ????????? ????? ????? ?? URL. ??? ???? ??????? ??? ?? ????? ??? ?????? ??? 1 ? URLScan ?? ???? ??? http://servername/BadFile.exe/SafeFile.htm ??? ??? ??????? ??? ??? ???? HTML? ????? ???? ??? ??? ???? ??????? (.exe) ?? ??? ???? HTML ?? ????? PATH_INFO ??????. ????? ??? ????? ??? ?????? 0, ?? ???? URLScan ????? ????? ??????? ???? ????? ??? ????.
  • RemoveServerHeader = 0

    ???? ???????? ????? ???? ??? ??? ???? ?? ?? ?????? ???? ??? ??? ??????? ?? ???? ??????????. ??? ???? ??? ????? ????? ??? ??????? ?????? ??? ????? ???? ????? ??? ??????? ???? IIS ?? ?????? ???????? ????? IIS ????? ?? ?????? ??????? ???? IIS ???????? ?????? ??????? ??????? ?? ??? ?????? ??? ??????. ?????????? ??? ????? ??? ?????? ??? 0. ??? ??? ?????? ?????? RemoveServerHeader ??? 1 ??? ?????? ?? ????? ??? ???? ???? ???? IIS. ??? ??? ?????? RemoveServerHeader ??? 0 ?? ???? ??? ????? ??? ?????.
  • =(not specified by default) AlternateServerName

    ??? ?? ????? RemoveServerHeader ??? 0, ????? ????? ????? ?? ?????? AlternateServerName ????? ?? ???? ????? ??? ???? ?? ??? Server. ??? ?? ????? RemoveServerHeader ??? 1 ? ??? ????? ??? ??????.
  • EnableLogging = 1

    ???? ???????? ????? URLScan ??? ???? ????? ??????? ???????? ?? % WINDIR%\System32\Inetsrv\URLScan. ????? ????? EnableLogging ??? 0 ??? ?? ??? ???? ???????? ??? ?????.
  • PerProcessLogging = 0

    ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? ??? ?????? ??? 1 ? URLScan ????? ??? ????? ??? ????? ?????? URLScan.dll. ????? ??? 0? ??? ????? ???? ???????? ??? ??? ?????.
  • PerDayLogging = 1

    ?????????? ??? ????? ??? ?????? ??? 1. ??? ?? ????? ??? ?????? ??? 1 ? URLScan ?????? ??? ??? ???? ?? ???. ??? ????? ?? ??? ??? .log Urlscan. MMDDYY ???? MMDDYY ????? ??? ?????. ??? ?? ????? ??? ?????? ??? 0, ??? ??? ???? ????? ?? ??? ?????? ??? ????? ?? ???????.
  • AllowLateScanning = 0

    ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? ??? ?????? ??? 0, ??? ????? URLScan ????? ????? ??? ???????? ??? ???? ?? ???? ??? ?? ?????? ?????? ???? ??????? ??????? ????? (ISAPI) ????? ????? ????? ??? ??????. ??? ?? ????? ??? ?????? ??? 1 ? ???? URLScan ????? ????? ??? ???????? ???????? ???? ????? ??????? ?????? ???? ????? URL ??? URLScan ????? ?? ?????. ?????? ???? FrontPage (FPSE) ????? ??? ?????? ?????? 1.
  • =(not specified by default) RejectResponseUrl

    ???? ??? ?????? ???? ????? ??? ??? ???? ??? ?????? ????? URLScan ???? ???. ???? ??? ????? ????????? ???? ??? ??????? ??? ?????? ??????? ????????. ??? ????? RejectResponseUrl ??? ???? ????? ??? ????? ??????? ??? /Path/To/RejectResponseHandler.asp. ????? ????? ??? URLScan ????? ????, ??? ???? ?? ????? ???? ?????? (ASP). ????? ????? ??????? ????????? ?????? ??????? ?? ??????:
    • HTTP_URLSCAN_STATUS_HEADER: ??? ????? ????? ?? ??? ?????.
    • HTTP_URLSCAN_ORIGINAL_VERB: ???? ??? ????? ??????? ?? ??? ???????? (??? ???? ??????? GET POST, HEAD ?? ?????).
    • HTTP_URLSCAN_ORIGINAL_URL: ??? ????? ???? ???? ????????? ?????? ?? ??? ????????.
    ??? ??? ?????? RejectResponseUrl ???? ???? / ~ * ? URLScan ?????? ??? ??????? ???. ??? ???? IIS ????? ???? ????? ???? ???? Access ?????? ????? ??? ??? URLScan ?? ??? ????? ??? ????? ???. ???? ???? ??? ??? ???? ?? ?????? ????? ?? URLScan.ini ?????.

    ??? ?? ??? ?????? ???? ?? RejectResponseUrl URLScan ?????? ?????? ?????????? /<Rejected-By-UrlScan>.

  • UseFastPathReject = 0

    ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? ??? ?????? ??? 1 ? ?????? ??????? RejectResponseUrl URLScan ????? ?????? ????? ??? 404 ?????? ??? ????????. ??? ???? ?? ?????? RejectResponseUrl ???? ?? ???? ?????? ?? ?????? ?????. ??? ?? ????? ??? ?????? ??? 0, ?????? URLScan ??????? RejectResponseUrl ??????? ?????.

[AllowVerbs] ?????? [DenyVerbs]

????? ??????? [AllowVerbs] ? [DenyVerbs] ??????? HTTP (???? ????? ??????) ???? URLScan. ????? ??????? ??????? HTTP GET POST HEAD ? "PUT". ????????? ?????? ??? FPSE ? ??? ??????? ?????? ?????? ??????? (WebDAV) ? ?????? ??????? ??????.

[AllowVerbs] ?????? [DenyVerbs] ?? ???? ???? ??? ???? ??????. ??? ????? ????? ????? HTTP ??????? ? ?? ????? ???? ??? ????? ????? ??.

???? URLScan ????? ???? ???????? ???????? ??? ???? ?????? UseAllowVerbs ?? ?????? [Options]. ?????????? ??? ????? ??? ?????? ??? 1. ??? ?? ????? UseAllowVerbs ??? 1 ? URLScan ???? ????? ???? ?????? ??????? ???? ??? ????? ?? ?????? [AllowVerbs] ???. ?? ??? ??? ?? ?????? ??? ??? ???????. ?? ??? ??????? ??? ????? ?????? [DenyVerbs].

??? ?? ????? UseAllowVerbs ??? 0 ? URLScan ???? ????? ???? ?????? ??????? ???? ???? ???????? ?? ?????? [DenyVerbs]. ??? ?????? ??? ????? ?????? ??????? ???? ?? ???? ?? ??? ?????. ?? ??? ??????? ?????? URLScan ?????? [AllowVerbs].

?????? [DenyHeaders]

????? ???? ???? ???? ??? ?? ???? ??? ????? ???? ??? ??? ???? HTTP ???? ????? ??? ??????? ?????? ??? ?????. ????? ???? ????? HTTP ??????? ?? ???:
  • ??????:

    ??? ????? ????? ??? ??? ???? ???.
  • ????:

    ????? ??? ????? ????? ??????? ???? ???? ??????? ??????.
  • ???? ????????:

    ??? ????? ????? ??? ??? ???????? ????? ?? ??????.
  • ???????:

    ????? ??? ????? ?????? ???????? ????? ??????.
?? ??????? ????? ?????? ?????? ??? ?????? ?????? ??????? ??????.

?? ?????? [DenyHeaders] ????? ???? HTTP ????? URLScan. ??? ???? URLScan ??? ???? ????? ??? ?? ??? ???????? ?? ??? ?????, ??? ??? ?????. ????? ??? ?????? ?? ????? HTTP ???? ?? ?? ??? ?????? ??? ????? ????? ??. ??? ?? ???? ????? ???? ??????? (:)) (??? ???? ??????? ??? ???:).

[AllowExtensions] ?????? [DenyExtensions]

???? ???? ??????? ???? ??? ??? ???? ????? ??? ??? ???. ??? ???? ??????? ????? ??????? ?? Word ????????? ????? ??????? ?? .doc ????? ????? HTML ????? ?? ????? .htm ?? .html ?? ????? ????? ??????? ???????? ???? ?????? ????? ?? .txt. ???? ??????? [AllowExtensions] ? [DenyExtensions] ????? ???????? ???? ???? ???? URLScan. ??? ???? ??????? ????? ????? URLScan ??? ????? ??????? ??????? .exe ???? ??? ?????????? ?? ????? ????????? ??? ?????? ????? ??.

[AllowExtensions] ?????? [DenyExtensions] ?? ???? ???? ??? ???? ??????. ??? ????? ?? ????? ?????? ????? ??????? ????? ?? ???? ??? ????? ????? ??. ??? ????? ???? ????? (.) (??? ???? ??????? .ext).

???? URLScan ????? ???? ???????? ???????? ??? ???? UseAllowExtensions ?? ?????? [Options]. ?????????? ??? ????? ??? ?????? ??? 0. ??? ?? ????? UseAllowExtensions ??? 0 ? ???? URLScan ??? ?? ????? ????? ?????? ????? ???????? ?? ?????? [DenyExtensions]. ??? ?????? ??? ?????? ????? ??????? ???? ?? ??? ????? ?? ??? ?????. ??? ????? ?????? [AllowExtensions].

??? ?? ????? UseAllowExtensions ??? 1 ? URLScan ???? ????? ??? ??? ?????? ????? ??????? ????? ???? ?? ?????? [AllowExtensions]. ??? ?????? ??? ?????? ???? ??? ??? ???? ?? ???? ?? ??? ??????. ??? ????? ?????? [DenyExtensions].

?????? ??? ??????? ?????? ??? ????? ????? URLScan ?????? ?????? ??????? ???? ??? ????? ???? ???? ??? ??? ??????? ?????? ?????? ?? "????? ??????? ?? Microsoft:
312376????? ????? URLScan ?????? ?????? ????? ????? ?? IIS

?????? [DenyUrlSequences]

????? ????? URLScan ???? ??????? ???? ????? ??? ??????? ????? ?? ?????? ?? URL. ??? ???? ??????? ????? ??? ??????? ???? ????? ??? ????????? ?????? (.) ???? ?????? ???? ????? ???????? ?????? ??????? ????????? ?? ??????? ??????? ?????? ??????. ?????? ????? ???? ???? ??? ??????? ??? ??? ?????? ?? ?????? [DenyUrlSequences].

???? ?? ????? ???? ?? ???? ???? ???? ??? Access ??? Outlook (OWA) ?? Microsoft Exchange. ??? ??? ????? ?? OWA ????? ??? ????? ??????? ?? ???? ???? ????????? ???????? ?? ??????. ??? ????? URLScan.ini ???? ??? ????? ???? ????? ??? ?????? ??????? (%) ?????? ????? ???? (&) ? ????? ?????????? ????? ??? 404 ??? ?????? ??? ????? ?? ??? ????? ??? "????? ???????? ????? 100 %" ?? "???? & ???? ??? ??? ???????". ??? ??? ???????? ???? ????? ??? ????????? ???????? [DenyUrlSequences]. ?????? ??? ????? ?????? ???? ?? ???? ???? ???? ???? ????? ??????? ??? ??????.

?????? ??? ??????? ??????? ???? ??? ??? ??????? ?????? ?????? ?? "????? ??????? ?? Microsoft:
325965???? URLScan ?? ???? ??? ???? ????? ?? Outlook Web Access

????? URLScan ????????? ?? ??????? ????? ??? IIS

??????? ??? Exchange ? FPSE Microsoft Visual Studio .NET ????? ??? IIS ?????? ??? ????? ??????. ??? ?? ??? ????? URLScan ???? ????, ?? ????? ??? ????????? ?? ????? ???? ????.

?????? ??? ??????? ?????? ??? ????? ????? URLScan ????? ?? ??? ????????? ???? ??? ????? ???????? ??????? ?????? ?? "????? ??????? ?? Microsoft:
309508IIS Lockdown URLscan ????????? ?? ???? Exchange
309394????? ??????? URLScan ?? FrontPage 2000
318290????? ??????? URLScan ?? FrontPage 2002
310588??? ?????? ??????? ?????? ????? ASP.NET ?? Visual Studio .NET

??????? ????

??? ??? Urlscan.ini ??? ????? ?? ???? %WINDIR%\System32\Inetsrv\URLscan ? ????? ?????? ??????? ??? 404. ??? ??? ???????? ?? ???????? ????? Urlscan.ini ?? ???? ???????? ?? ??? ????? Urlscan.ini ?? ???? ???????.

?????

?????? ??? ??????? ??????? ???? ??? ??? ??????? ?????? ?????? ?? "????? ??????? ?? Microsoft:
325864????? ????? IIS Lockdown ?????

???????

???? ???????: 326444 - ????? ??? ??????: 04/???/1429 - ??????: 6.1
????? ???
  • Microsoft Internet Information Server 4.0
  • Microsoft Internet Information Services 5.0
????? ??????: 
kbmt kbhowtomaster KB326444 KbMtar
????? ????
???: ??? ????? ??? ?????? ???????? ?????? ????? ???? ????? ?????????? ????? ?? ????????? ?????? ????. ???? ???? ?????????? ???? ?? ???????? ???????? ?????? ????????? ????? ????????? ???????? ????? ???????? ?????? ?? ?????? ??? ?? ???????? ???????? ?? ????? ??????? ?????? ??? ??????? ?????? ??. ?????? ?? ???? ??? ??????? ???????? ????? ?? ???? ????? ?????? ??? ????? ??? ????? ??????? ?? ????? ?? ?????? ??? ??? ??????? ??????? ?? ????? ????? ????? ????? ?????. ?? ????? ???? ?????????? ??????? ??? ????? ?? ??????? ?? ????? ?????? ?? ??? ????? ?? ????? ??????? ?? ???????? ?? ??? ???????. ???? ???? ?????????? ???????? ??? ????? ?????? ??????? ??????
???? ??? ????? ??????? ?????? ??????????326444

????? ???????

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com