22nd October 2007

Running PHP on 64-Bit Windows

I have recently started working on 64-bit Windows servers more often and thought I’d share some of my experiences along the way.

One of the issues I encountered was with the installation of PHP on a 64-bit Windows Server 2003 R2 machine. The server already had IIS 6.0 installed so I downloaded the latest distribution of PHP and installed it in the usual way as described here How To Install PHP on IIS 6.0

Read the rest of this entry »

posted in 64-Bit Windows, IIS 6.0, PHP | 30 Comments

15th October 2007

How To Configure FTP User Isolation in IIS 5.0

In this tutorial we are going to look at how to create an FTP site which enforces ‘User Isolation’ in IIS 5.0

User Isolation is implemented as an option in the FTP service in IIS 6.0 when you create a new FTP site and it allows you to host multiple FTP sites on one server – it is particularly useful in an ISP shared server hosting situation as it prevents users from accessing or even viewing other users’ folders on the server. The FTP user’s top level folder appears as the root of the FTP site.

Implementing user isolation in IIS 5.0 is possible but it requires the server administrator to do some additional configuration in order to set it up it both successfully and securely.

Read the rest of this entry »

posted in IIS 5.0 | 5 Comments

8th October 2007

How to Secure a Web Site Using Client Certificate Authentication

In this tutorial I am going to demonstrate how to secure a web site using a client certificate. I don’t intend to explain in detail what a client certificate is or how it works. If you don’t know then I suggest you read this Microsoft KB article before we get started :

IIS and client certificates


In a nutshell a client certificate provides an extra layer of security for a web site – you can configure a web site so that any user wishing to connect is required to provide both a valid client certificate and a valid password. This is commonly known as ‘two factor authentication’ – the two factors are ‘something that you know’ and ‘something that you have’. In this scenario the ‘something that you know’ is your password and the ‘something that you have’ is your client certificate.

I am also going to expand on the final comments in the above KB article and demonstrate how to perform User mapping with a client certificate.

Read the rest of this entry »

posted in IIS 6.0 | 6 Comments

  • Calendar

  • October 2007
    M T W T F S S
    « Sep   Sep »