Stopping Bots and Website Scrapers from scanning your sites on IIS with URL Rewrite…

Posted on November 12, 2016 by robwillisinfo

Bots and Website Scrapers can be a serious annoyance to anyone who is responsible for administering a website and the more sites and servers you are responsible the more of a problem it can become. Every request a bot or Continue reading →

Modifying HTTP Response Headers in IIS 8 with URL Rewrite

Posted on June 15, 2016 by robwillisinfo

If you have ever scanned your own site or a site you are responsible for you may have noticed that web servers sometimes tend to give out more information about themselves than is really needed. This information can also be Continue reading →

IIS 8 with ECC certificates – increasing your SSL Security on Windows Server 2012

Posted on February 12, 2016 by robwillisinfo

What is an ECC Certificate and why would you need one? The main difference with an Elliptic Curve Cryptography (ECC) certificate is with how the certificate is signed, in this case the Elliptic Curve Digital Signature Algorithm (ECDSA) is used Continue reading →

Hardening SSL & TLS connections on Windows Server 2008 R2 & 2012 R2

Posted on October 21, 2015 by robwillisinfo

Hardening your SSL/TLS connections is a pretty common thing to do on any Windows Server running IIS and web applications that utilize HTTPS, especially if they require some sort of compliance. It is generally a good idea to do this Continue reading →

Fix the obsolete cryptography warning in Chrome on IIS 7 & 8

Posted on May 2, 2015 by robwillisinfo

Update – 2.2.2016 – The ciphers originally listed in this post no longer work to fix the obsolete cryptography warning as Google has upped the requirement from DHE with AES_128_GCM to ECDHE with AES_128_GCM or CHACHA20_POLY1305. The only ciphers we Continue reading →

Testing SMTP with Telnet and PowerShell (Cheat Sheet)

Posted on July 24, 2014 by robwillisinfo

This is my cheat sheet for sending E-Mail through a SMTP Server. This is particularly useful when configuring and testing a new SMTP server. PowerShell: Send-MailMessage -SMTPServer hostname -To youremail@domain.com -From none@none.com -Subject “This is a test email” -Body “This Continue reading →

Home Server Stack v2

Posted on March 24, 2014 by robwillisinfo

It has been a year or so since I have done an update on my home server stack, there have been a considerable amount of changes and of course a lot of lessons learned. I recently changed jobs and had Continue reading →

Using PowerShell to filter and sort IIS Binding info…

Posted on January 22, 2014 by robwillisinfo

In this post I want to talk about a few PowerShell commands for grabbing info about IIS bindings that utilize the Webadministration Module. When a server is running a lot of sites, sorting through the bindings can be a daunting Continue reading →

IIS 7/7.5 – Configuring PHP via FastCGI on Windows Server 2008 R2

Posted on September 28, 2013 by robwillisinfo

PHP is a fantastic dynamic programing language which runs great on IIS, but can be a bit slow at times. Traditionally PHP runs on IIS either as an ISAPI extension or as a Common Gateway Interface (CGI) program, running PHP Continue reading →

IIS 7/7.5 Hardening SSL TLS – Windows Server 2008 R2

Posted on September 20, 2013 by robwillisinfo

One of the first steps you should do when deploying a new public facing web server is hardening your server’s SSL/TLS connections. Disabling vulnerable protocols, ciphers, hashes and key exchange algorithms can help mitigate the now more common exploits like Continue reading →

RobWillis.info

everything tech.

Tag Archives: IIS