Geeks With Blogs
Rishi Pande Me, Myself and my obsessions
Localstart.asp is a default page on IIS installations. This page is protected by IIS using basic authentication. The problem with this is that if I am able to bruteforce the password, I know the password for the admin on the local box.
This can be very bad since the attacker now knows the admin's password. If the box enables any network services, this is almost fatal. Even if this particular box does not have any network services, the attacker has an idea of how the admins is making up passwords. For example, if the localstart.asp admin password is "Adm1nB0xname" - the attacker has a fairly good idea of what the password is going to be on another box in the network that has more previleges such as ssh.
A word of caution to those who decide that the best way to go about it is to remove localstart.asp. It seems that simply removing causes problems in IIS. The best solution is to replace localstart.asp with a blank page and have no authentication on it. Posted on Sunday, April 9, 2006 1:38 PM .NET security development | Back to top


Comments on this post: localstart.asp

# re: localstart.asp
Requesting Gravatar...
i hate this!
Left by bpbb on May 05, 2006 6:28 PM

# re: localstart.asp
Requesting Gravatar...
can you help me change default port 8080 of IIS wen server
Left by pradeep on May 11, 2006 10:16 PM

# re: localstart.asp
Requesting Gravatar...

did you figure out how to disable this yet? I can't seem to disable it.
Left by jay on Jul 20, 2006 11:54 AM

# re: localstart.asp
Requesting Gravatar...
I want know how to remove this service because in one customer our static ip is regestred with mac from our server but in the client end with out do any thing . internet is working so how i can remove this service it .


Radhesh chaudhray
Left by Radhesh on Oct 08, 2008 10:46 AM

# re: localstart.asp
Requesting Gravatar...
Can anyone explain me clearly that How can remove that localstart.asp. Whenever I open my explorer window in my system, it ask for username and password and if I have seen the address bar it looks like www.______.com/localstart.asp.

Thanks in Advance,
Sivakumar
Left by Sivakumar on Feb 11, 2010 8:47 AM

Your comment:
 (will show your gravatar)


Copyright © Rishi Pande | Powered by: GeeksWithBlogs.net