Base Registry Settings (Compact 2013)
3/26/2014
The HKEY_LOCAL_MACHINE\COMM\HTTPD registry key contains the configuration parameters for the Web Server. If you change any value, you must stop the Web Server and then restart it to enable the new settings.
Note
HKEY_LOCAL_MACHINE\COMM\HTTPD is a protected or access-restricted registry key on some devices.
Note
For Windows Embedded Compact, the default registry values vary depending on which Catalog items are included in your OS design.
The following table shows the named values for the HTTPD configuration parameters.
Value |
Type |
Description |
Default value |
|---|---|---|---|
AdminUsers |
REG_SZ |
Specifies a list of user names, separated by semicolons. A user who has gained user access must be listed in this key to gain Administrator access. .gif "Ee499476.security(en-us,WinEmbedded.80).gif") Security Note:
User names in this list identify the administrators of the site who have access to all virtual roots hosted on this Web site, including the restricted sites. Choose these users carefully and ensure that they set proper passwords, otherwise their accounts could be used to gain access to restricted sites.
|
Not set. |
Basic |
REG_DWORD |
If this value is nonzero, the Web Server uses Basic authentication for client connections. Enables Basic authentication, which enables the client browser to send the user identifier and password to the server. Security Note When Basic authentication is enabled, the client browser sends the user identifier and password to the server in clear text. In addition, all data sent between the client and the browser is in clear text and therefore vulnerable to packet sniffing. You should consider using SSL to help protect sensitive information. |
Zero (0). |
BasicRealm |
REG_SZ |
Specifies the string that the Web Server will send to clients as its Basic realm when performing basic authentication. If this registry value is not set, the Web Server will default to using the string. |
"Microsoft-WinCE" |
ConnectionTimeout |
REG_DWORD |
Number of milliseconds the Web server will allow an idle connection to remain open before it closes the connection. |
30000 (30 seconds) |
DefaultPage |
REG_SZ |
Specifies a list of page names, separated by semicolons, that indicates names interpreted by the Web Server to be default pages. When browsing a directory, the Web Server traverses this list searching for a file of the same name in the directory. If the file exists, it is sent to the client. If no matching file exists, the Web Server sends a directory listing or returns an error, depending on whether directory browsing is enabled. If more than one DefaultPage file name is matched, the Web Server uses the first matching file name. |
"default.htm;index.htm" |
DirBrowse |
REG_DWORD |
If this value is set to nonzero, directory browsing is allowed. If this value is not set in the registry, directory browsing is turned off. Turns on the Web Server's ability to provide local directory browsing. Security Note:
When directory browsing is allowed, the local file system is exposed to a remote browser through HTTP. Users can view file lists and download files depending on virtual root and authentication registry settings. Since enabling directory browsing increases the potential attack surface, you should enable directory browsing only when necessary.
|
zero (0) |
Filter DLLs |
REG_SZ |
Specifies a list of DLL names, separated by commas, that identifies the filters to use. |
Not set |
IsEnabled |
REG_DWORD |
If the value is set to zero (0), the Web Server does not accept connections from the network, even from the local host. |
Not set |
LogFileDirectory |
REG_SZ |
If the name is not set or if the specified directory is inaccessible, no logging is performed. Specifies the name of the directory where the logging files are created. |
"\windows\www" |
MaxConnections |
REG_DWORD |
Specifies the maximum number of simultaneous connections to the Web site. After the maximum number of connections is established, additional client requests will be sent a message: 503 - Server Too Busy. Security Note:
Setting the value too small can block user access to the site. However, if the value is too large the Web Server will consume more system resources. Based on your deployment model, choose this number accordingly.
|
10 |
MaxHeaderSize |
REG_DWORD |
Specifies the maximum number of bytes that the Web Server will read of HTTP headers. If the header size exceeds this value, the Web Server will terminate the session and return a message to the client: 400 - Bad Request. |
48 |
MaxLogSize |
REG_DWORD |
If this value is not set in the registry, or if it is set to zero (0), no logging is performed. Specifies the maximum size, in bytes, that a log file can become before it is rolled over. |
32 |
NTLM |
REG_DWORD |
If this value is set to nonzero, the Web Server uses NTLM authentication for client browser connections. Also, if this value is nonzero, the failure of Basic authentication forces NTLM authentication. If the value is not set in the registry, NTLM is not used. Security Note:
Although the client browser sends the password to the server in encrypted format, all data sent between the client and the browser is in clear text and therefore vulnerable to packet sniffing. You should consider using SSL to help protect sensitive information
|
1 |
Port |
REG_DWORD |
This port receives HTTP connections. Do not set the port to zero (0). When the Web Server is running from Servicesd.exe, which is the default, this value is ignored and Servicesd.exe becomes the super server. |
80 |
PostReadSize |
REG_DWORD |
The Web Server uses a minimum value of 8192 bytes (8 KB). If the value in the registry is less than 8 KB, the value is ignored and the Web Server will use 8 KB. Specifies the maximum number of bytes that the Web Server reads when receiving POST data. To read more data, you must use a raw data filter or call ReadClient in an ISAPI extension. |
48 |
ScriptMap |
REG_SZ |
Default is not set in the registry. Identifies the name and value pairs that specify file extensions and scripts. .gif "Ee499476.note(en-us,WinEmbedded.80).gif") Note:
Windows Embedded Compact does not support wildcards in file extension names. For example, you cannot map *.dll to an ISAPI DLL.
|
Not set |
ScriptUnloadDelay |
REG_DWORD |
Specifies the length of time, in milliseconds, that the Web Server will leave ISAPI extensions and the ASP interpreter loaded in the cache after the last server use. |
1800000 |
ServerID |
REG_SZ |
If ServerID is set, the Web Server returns the specified server name in the response header. Identifies the server name that is included when the Web Server generates HTTP response headers. The response header includes a field name "Server: ". Optionally, you can include the software version number or any similar information in the string. Security Note:
To avoid revealing the server software information to malicious users, you may want to create a custom server name that obfuscates the Web Server and operating system versions.
|
"Microsoft-WinCE/X.Y", where X is the major version and Y is the minor version of Windows Embedded Compact-based device. |