Re: Masking URLs in IIS

["Sherwyn" <infolookup () gmail com>]

I will look into this option thanks Bert.
------Original Message------
From: Bert Van Kets
To: infolookup () gmail com
To: PaulDotCom Security Weekly Mailing List
Subject: Re: [Pauldotcom] Masking URLs in IIS
Sent: Oct 5, 2010 3:33 AM

 IMHO the only way you can do it is by using a proxy that redirects the
requests to the final destination. Without a proxy, the browser will
have to know the final address of the site (the one you are trying to
hide) to request the data. The requests can be sniffed and the final
address detected, even if you hide it from the address bar.

If you can set up a "public" URL on the same server, you can define that
to use server side redirects. This functions the same way as a proxy
without the need for another machine.

Just my 0.02$

Bert


On 05/10/2010 01:20, Sherwyn wrote:
> Hello All,
>
> I would like to know what's the most secure way of masking your  URLs. Example would be if I have 
> http://servername.domain.com:234, if I need to put this link on a website how can I convert this to something else 
> that is not telling everyone the server name and what port I have open?
>
> The web servers are all running IIS.
>
> Thank you,
> Infolookup
> http://infolookup.securegossip.com
> www.twitter.com/infolookup
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com


Infolookup
http://infolookup.securegossip.com
www.twitter.com/infolookup
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com