Microsoft
Software
Hardware
Network
Question : IIS 7 leaking private ip via https
Security scans are showing that we were leaking private IP addresses on our public web servers. We appear to have nailed that down with IIS 7 on port 80, but I guess port 443 is still showing the private IP address. Haven't been able to find much about this one other than the following link, but since we host quite a few sites on this server (many with their own certs), seems like this might not be what we're looking for. Any help would be appreciated...
http://blogs.msdn.com/b/mi
ke/archive
/2008/11/1
8/removing
-an-
iis-se
rver-s-ip-
address-fr
om-http-re
sponses.as
px
Answer : IIS 7 leaking private ip via https
Have a look at my comments here on the MS IIS forums:
http://forums.iis.net/t/11
68391.aspx
That should stop all the port 80 vulerabilities and likley the 443s although I have not checked this.
Random Solutions
How to redirect to other action by using MVC2 framework
Arabic text in grid view from SQL Server
Help with regular expression javascript
Sharepoint 2007 - Workflows and Custom Event Handlers
Update data and select from same table
Windows 7 Enterprise MAK activation erros
creating multiple instances of user data type
Report Filtered by form with added bonus
Having an @@Identity crisis with ADO and doing an update to SQL from Access 2010
MS Office 2007 & 2010: Best practices for implementing centralized management of default templates?
