J
jerry2
Guest
Hi there, I hope I got your attention ;-)
I think I may of found a major bug in this module of plesk, named URLprotect.dll...
What happens if if I enter in any of my plesk servers URL (language, database name etc. doesn't matter), something like:
http://www.test.com/article.php?ID=10%
instead of
http://www.test.com/article.php?ID=10
Application pool fails 5 times in a row and I get service unavailable because application pool crashes.
The problem seems to be character %. Put it in the end of the URL and the service will crash. First I thought it is a PHP or ASP or database error but happens on all my servers no matter how the application is handled, which database or server language is used, passive or active statements. As I tried out, the page never gets even executed (I wrote <% response.end() %> in ASP as my first line. So I thought this must be something big going on on my server.
After 2 days I found that the problem is urlprotect.dll. This module seems to be ISAPI filter that handles URL's for protected pages, if you remove it the protection from the protected pages is GONE :-( But after I remove it, the aplication pool crash if there is % in the dynamic URL is also gone. Also my debugger shows that the urlprotect.dll is the module that initially failed before taking down whole W3SVC and application pool...
I don't claim to be very smart, but if this is true and somebody from you can verify (my config is Windows 2003 sp1, Plesk latest 8.4.0.1 I think... Other things seems to not matter), anybody can kill your server with a blink of the eye (or better a % in your querystring) :-(((
It seems most unrealy such a huge bug would be in the filter... but all my web pages and all the servers that have plesk are affected from any technology I use. I have one server that is without Plesk and this problem is not there.
I don't use any other ISAPI filter on 2 servers I use some URL rewriter on 1 server, but seems this filter isn't the problem as it is only on 1 server and removing it does nothing.
All the paths on my research point to urlprotect.dll. Now please can someone verify that? I can not believe it is true but I also can not believe it is not true.
The only thing is that something else that I have on all the servers is causing this, but what? urlprotect.dll is a realtime URL filter just as the error presents itself...
Yours
Jerry
UPDATE: It seems any querystring that has % not followed by 2 other characters (%21 is OK as this is character !) like % or %8 or 9945%9 crashes application pool several times.
I think I may of found a major bug in this module of plesk, named URLprotect.dll...
What happens if if I enter in any of my plesk servers URL (language, database name etc. doesn't matter), something like:
http://www.test.com/article.php?ID=10%
instead of
http://www.test.com/article.php?ID=10
Application pool fails 5 times in a row and I get service unavailable because application pool crashes.
The problem seems to be character %. Put it in the end of the URL and the service will crash. First I thought it is a PHP or ASP or database error but happens on all my servers no matter how the application is handled, which database or server language is used, passive or active statements. As I tried out, the page never gets even executed (I wrote <% response.end() %> in ASP as my first line. So I thought this must be something big going on on my server.
After 2 days I found that the problem is urlprotect.dll. This module seems to be ISAPI filter that handles URL's for protected pages, if you remove it the protection from the protected pages is GONE :-( But after I remove it, the aplication pool crash if there is % in the dynamic URL is also gone. Also my debugger shows that the urlprotect.dll is the module that initially failed before taking down whole W3SVC and application pool...
I don't claim to be very smart, but if this is true and somebody from you can verify (my config is Windows 2003 sp1, Plesk latest 8.4.0.1 I think... Other things seems to not matter), anybody can kill your server with a blink of the eye (or better a % in your querystring) :-(((
It seems most unrealy such a huge bug would be in the filter... but all my web pages and all the servers that have plesk are affected from any technology I use. I have one server that is without Plesk and this problem is not there.
I don't use any other ISAPI filter on 2 servers I use some URL rewriter on 1 server, but seems this filter isn't the problem as it is only on 1 server and removing it does nothing.
All the paths on my research point to urlprotect.dll. Now please can someone verify that? I can not believe it is true but I also can not believe it is not true.
The only thing is that something else that I have on all the servers is causing this, but what? urlprotect.dll is a realtime URL filter just as the error presents itself...
Yours
Jerry
UPDATE: It seems any querystring that has % not followed by 2 other characters (%21 is OK as this is character !) like % or %8 or 9945%9 crashes application pool several times.