Previously in part 1 and part 2, there was no final and easy-to-use solution to prevent bad guys to map your website. There is a final solution that works with On-Premise IIS and with Azure Web App. It is independent of Web Application Firewall and Front Door service. The solution is based on rewrite, […]
Previously I showed you the method of preventing mapping of the file structure of your WebApp based on 404 and 403 response codes. The disadvantage of runAllManagedModulesForAllRequests=”true” method is that it must be handled by application code. The main problem is that these requests 403 and 404 are server not by IIS from WebApp, but […]
New-AzRoleAssigment -objectid service_principal -RoleDefinitionName “Managed Identity Operator” -Scope ResourceID In case of error: Principals of type Application cannot validly be used in role assignments Please provide -objectid Service Principal, not Application. Just display it, by: Get-AzureADServicePrincipal -SearchString “app_name”
If you deploy sample ASP.NET 4.x pure, out of the box web app (https://portal.azure.com/#create/Microsoft.WebSite) the behaviors is like: https://pure.azurewebsites.net/yfgrueygfuyrgfrf – 404 error – what is ok… https://pure.azurewebsites.net/a/a.txt – 200 OK (of course you need first put a.txt file to this directory) https://pure.azurewebsites.net/a/ – 403 forbidden – so it means that hacker can search for something […]
I am always looking for that link https://account.azure.com/organization that allows me to create a New Azure Active Directory for test customer or for new customer. It is very helpfully for Azure Passes that after that can be activated via https://www.microsoftazurepass.com/ Please remember doing a new Tenant in Private Mode in your browser. Post daje, aby […]