Questions? Start a Support Ticket
User Registration
Customer Login

Knowledgebase

Portal Home > Knowledgebase > Articles Database > How to Disable Executables files upload on windows server


How to Disable Executables files upload on windows server




Posted by prashantjadhav, 07-08-2013, 05:57 AM
Hello, How can we disable the below file extension uploads on the windows server 2008 and windows server 2003 for all accounts except administrator ? .COM (machine language) .VBS (Visual Basic script) .VBE (Visual Basic script-encoded) .CMD (batch file – Windows) .BAT (batch file – DOS/Windows) .WS (Windows script) .WSF (Windows script) .SCR (screen saver) .SHS (OLE object package) .PIF (shortcut to DOS file plus code) .HTA (hypertext application) .JAR (Java archive) .LNK (shortcut to an executable) .EXE (Executable script) .PIF (A program information file for MS-DOS programs. While .PIF files aren’t supposed to contain executable code, Windows will treat .PIFs the same as .EXE files if they contain executable code) .MSP (A Windows installer patch file. Used to patch applications deployed with .MSI files) .SCR (A Windows screen saver. Windows screen savers can contain executable code) .CPL (A Control Panel file. All of the utilities found in the Windows Control Panel are .CPL files) .MSC (A Microsoft Management Console file. Applications such as the group policy editor and disk management tool are .MSC files) .PS1, .PS1XML, .PS2, .PS2XML, .PSC1, .PSC2 (A Windows PowerShell script. Runs PowerShell commands in the order specified in the file) Regards, Prashant
Posted by BestServerSupport, 07-08-2013, 10:42 AM
Microsoft Windows SharePoint Services provides the ability to restrict particular kinds of files from being uploaded or retrieved, For more details, visit following URL: http://office.microsoft.com/en-in/wi...001160801.aspx
Posted by prashantjadhav, 07-08-2013, 12:49 PM
Hello, Thank you for your update. But the mentioned link points out the uploading issues for MS SharePoint Central Administration and i need it for windows server 2008. Please suggest your valuable inputs. Regards, Prashant
Posted by jackpx, 07-08-2013, 05:32 PM
What ftp server are you using? Setting the correct permissions avoid running these files on the server. You can also use in IIS "Request filtering" (Win2008 - Win2012) to prevent them run those files using malicious scripts (c99)
Posted by prashantjadhav, 07-09-2013, 05:49 AM
Hello, Thank you for your reply. We are using Microsoft FTP service on windows server. I even tried denying .exe extension using Request filtering option of IIS but when i used to double click on putty.exe it opens immediately. How can this happen ? Following is the rule which i added in Request filtering .exe False
Posted by jackpx, 07-09-2013, 10:02 AM
With filezilla server and geneftp server you can block extension. Avoiding that these extensions can upload by ftp. With "Request filtering" (IIS) I block extensions without problems.
Posted by prashantjadhav, 07-10-2013, 06:50 AM
Hello, Thank you jackpx for your valuable information as it helped me a lot and resolved my issue.
Posted by jackpx, 07-10-2013, 11:17 AM
You welcome
Posted by prashantjadhav, 07-11-2013, 04:00 AM
Hello, Is there any such settings in IIS 6 for request filtering so that no one can deny upload .exe and .bat files through FTP.
Posted by jackpx, 07-11-2013, 06:44 AM
Yes, in Win2003 (IIS6) install y setup "urlscan" in the configuration file: urlscan.ini [DenyExtensions] .exe
Posted by prashantjadhav, 07-11-2013, 08:40 AM
Hello, I think Urlscan will only restrict uploading of .exe files through website but we want to restrict uploading of .exe files on IIS 6.0 through FTP like FTP Request Filtering of IIS 7.0. Regards, Prashant
Posted by jackpx, 07-11-2013, 06:57 PM
ahhh .ok, sorry I did not read your question fully. Urlscan only restrict download of .exe
Posted by prashantjadhav, 07-13-2013, 09:18 AM
Hello, So, is there any such option in IIS 6.0 to restrict uploading of .exe files on IIS 6.0 through FTP like FTP Request Filtering of IIS 7.0.
Posted by prashantjadhav, 07-15-2013, 07:18 AM
Any update ??


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
how to setup asp.net web site on VPS (Views: 741)
Gazzin troubles! (Views: 703)
Website on Centos VPS (Views: 740)
Need Windows reseller account, preferably Helm. (Views: 727)
[Solusvm] What should i do if Status Offline? (Views: 718)


Language:

Our Services

Client Menu

Legal

Terms of Service | Privacy Policy | Refund Policy | Affiliates
Copyright © 2015 DC International LLC in partnership with Bragin IT Solutions Inc. - All Rights Reserved.