August 29, 2005

Preventing Log Evasion in IIS

Anonymous Reader writes "The Web Application Security Consortium is proud to present 'Preventing Log Evasion in IIS',
written by Robert Auger. In this paper Robert describes an issue which allows an attacker
to evade multiple aspects of logging within an IIS server environment, as well as how to
remediate the problem."

Link: webappsec.org

Category:

  • Security
Click Here!