IIS Archives

Disable ECDH public server param reuse in Windows Server IIS

ECDH public server param reuse is when a server uses the same DH (Diffie-Hellman) key value for multiple handshakes, instead of generating a new one for every handshake. They should be "ephemeral" though which is why it is called "DHE" or "ECDHE", and this means the key is single-use and should never be reused. Windows Server IIS is known for reusing DH key values, but there is a way to disable ECDH public server param reuse in Windows Server IIS.

By Jan Reilink 09/04/2024Windows Server

PowerShell

Install IIS in Windows 11 using PowerShell

Do you have a need for IIS in your Windows 11 development station? And now you need to install IIS? Internet Information Services (IIS) for Windows is a secure and manageable webserver for hosting anything on the web. Here I describe how to install IIS.

By Jan Reilink 06/02/2024PowerShell

Windows Server

Monitor website performance in IIS with Zabbix

Monitor your website performance in IIS with Zabbix and Performance Counters. Scripting in PowerShell and WMI.

By Jan Reilink 29/01/2024Windows Server

Windows Server

Get IIS Current Connections using PowerShell

Use PowerShell, Performance Counters and WMI to get the current number of active connections to IIS websites. Perfect for monitoring IIS webservers in Zabbix.

By Jan Reilink 12/08/2023Windows Server

Windows Server

Install SSL/TLS certificates in Windows Server using PowerShell

Use PowerShell to install SSL certificate in Windows Server and change its FriendlyName property. As a bonus, I show you how to verify a certificate's Common Name (Subject) and Subject Alternative Name (SAN) using certutil.exe and PowerShell Get-PfxCertificate.

By Jan Reilink 10/08/2023Windows Server

Windows Server

Tune Windows Server TCP/IP and IIS

Learn how to reconfigure Windows Server's TCP/IP stack and IIS for high performing websites. Prevent running out of available ports/sockets (port exhaustion).

By Jan Reilink 21/06/2023Windows Server

WordPress

Are you in my blocklist?

Is your IP address in my WordPress .htaccess block list? Here are IP addresses I block manually because of comment spamming.

By Jan Reilink 12/02/2023WordPress

Web application security

3 Ways of blocking sendmail.php on IIS webserver

Use IIS URL Rewrite Module and Request Filtering in IIS to block access to certain scripts. Sendmail.php for example. To prevent sending spam.

By Jan Reilink 08/12/2021Web application security

Umbraco

How to add a trailing slash in Umbraco 8

This article shows you how to add a trailing slash to URL's in Umbraco 8, using IIS URL Rewrite Module, without breaking the Umbraco backend. Forcing one particular URL avoids duplicate content, which is important for SEO.

By Jan Reilink 28/11/2021Umbraco

Windows Server

How to enable HTTP/3 in Windows Server 2022

Learn the steps necessary to enable native HTTP/3 & MsQuic in Windows Server 2022 and IIS 10.0 for hosted websites.

By Jan Reilink 14/09/2021Windows Server

IIS Manager for Remote Administration in Windows 10

Windows Server

Install and setup IIS Manager for Remote Administration in Windows Server IIS (step by step)

In this article you’ll learn how to install and setup IIS Manager in Windows 11/10 to manage your website(s). You can also follow these steps to install Internet Information Services (IIS) Manager on a Windows Server Core edition, to locally or remotely manage hosted websites. This post also shows how to install IIS Web Management Service (WMSVC) on Server Core using PowerShell.

By Jan Reilink 22/04/2021Windows Server

Windows Server

Monitor IIS application pools in Zabbix, part 1

Zabbix can harnas the powers of WMI (Windows Management Instrumentation) to query the Windows system for data. In Zabbix you use wmi.getall for this. Here is a small introduction to query the number of running w3wp.exe processes per IIS application pool in Zabbix.

By Jan Reilink 27/02/2021Windows Server

Windows Server

How to remove IIS from Windows Server using PowerShell

No more need for Windows Server IIS? Want to remove IIS completely from Windows Server using PowerShell? Here is how. As a bonus, you'll learn to create a backup first.

By Jan Reilink 22/10/2020Windows Server

Set PHP handler accessPolicy (Request Restrictions) to Read in IIS

Web application security

Disallow direct access to PHP files in wp-content/uploads/

It's recommended to disallow access to and execution of PHP files in wp-content/uploads folder. Preferably without the use of a security plugin. Blocking access to PHP files in WordPress wp-content/uploads folder is easily achieved with a .htaccess file on Linux Apache, or web.config accesssPolicy in Windows Server IIS, and here is how. Secure your WordPress site with this simple, yet effective, tip!

By Jan Reilink 16/03/2020Web application security

Windows Server

Basic Authentication module for Windows Server IIS 10

Basic Authentication managed HTTP module for IIS 10 with virtual users support. In my pursuit of a basic authentication alternative in IIS, other than the built-in Basic Authentication module or Helicon Ape, I came across Devbridge AzurePowerTools. It's apparently one of few HTTP managed modules for IIS that enables HTTP Basic Authentication with support for virtual users.

By Jan Reilink 24/01/2020Windows Server