VPS主机-服务器合租-独立服务器-安全设置(6)

; [DenyVerbs] section.

UseAllowExtensions=0 ; If 1, use [AllowExtensions] section, else use

; the [DenyExtensions] section.

NormalizeUrlBeforeScan=1 ; If 1, canonicalize URL before processing.

VerifyNormalization=1 ; If 1, canonicalize URL twice and reject request

; if a change occurs.

AllowHighBitCharacters=0 ; If 1, allow high bit (ie. UTF8 or MBCS)

; characters in URL.

AllowDotInPath=0 ; If 1, allow dots that are not file extensions.

RemoveServerHeader=0 ; If 1, remove the 'Server' header from response.

EnableLogging=1 ; If 1, log UrlScan activity.

PerProcessLogging=1 ; If 1, the UrlScan.log filename will contain a PID

; (ie. UrlScan.123.log).

AllowLateScanning=0 ; If 1, then UrlScan will load as a low priority

; filter.

PerDayLogging=1 ; If 1, UrlScan will produce a new log each day with

; activity in the form 'UrlScan.010101.log'. [这里已经改为1，返回IIS默认错误页]

UseFastPathReject=1 ; If 1, then UrlScan will not use the

; RejectResponseUrl or allow IIS to log the request.

LogLongUrls=0 ; If 1, then up to 128K per request can be logged.

; If 0, then only 1k is allowed.

;

; If UseFastPathReject is 0, then UrlScan will send

; rejected requests to the URL specified by RejectResponseUrl.

; If not specified, '/<Rejected-by-UrlScan>' will be used.

;

RejectResponseUrl=

;

; LoggingDirectory can be used to specify the directory where the

; log file will be created. This value should be the absolute path

; (ie. c:\some\path). If not specified, then UrlScan will create

; the log in the same directory where the UrlScan.dll file is located.

;

LoggingDirectory=C:\WINDOWS\system32\inetsrv\urlscan\logs

;

; If RemoveServerHeader is 0, then AlternateServerName can be

; used to specify a replacement for IIS's built in 'Server' header

;

AlternateServerName=

[RequestLimits]

;

; The entries in this section impose limits on the length

; of allowed parts of requests reaching the server.

;

; It is possible to impose a limit on the length of the

; value of a specific request header by prepending "Max-" to the

; name of the header. For example, the following entry would

; impose a limit of 100 bytes to the value of the

; 'Content-Type' header:

;

; Max-Content-Type=100

;

; To list a header and not specify a maximum value, use 0

; (ie. 'Max-User-Agent=0'). Also, any headers not listed

; in this section will not be checked for length limits.

;

; There are 3 special case limits:

;

; - MaxAllowedContentLength specifies the maximum allowed

; numeric value of the Content-Length request header. For

; example, setting this to 1000 would cause any request

; with a content length that exceeds 1000 to be rejected.

; The default is 30000000.

;

; - MaxUrl specifies the maximum length of the request URL,

; not including the query string. The default is 260 (which

; is equivalent to MAX_PATH).

;

; - MaxQueryString specifies the maximum length of the query

; string. The default is 2048.

;

MaxAllowedContentLength=30000000

MaxUrl=260

MaxQueryString=2048

[AllowVerbs]

;以下为网站中表单或注册功能的提交方式（允许的）如果有其他提交方式，可以在[DenyVerbs]下多余的提交方式前加分号，然后在补充到下面

; The verbs (aka HTTP methods) listed here are those commonly

; processed by a typical IIS server.

;

; Note that these entries are effective if "UseAllowVerbs=1"

; is set in the [Options] section above.

;

GET

HEAD

POST

[DenyVerbs]

;

; The verbs (aka HTTP methods) listed here are used for publishing

; content to an IIS server via WebDAV.

;

; Note that these entries are effective if "UseAllowVerbs=0"

; is set in the [Options] section above.

;