By Cheah Ch.H., Schaefer K.
In home windows Server 2003, the IIS 6.0 internet server is switched off by way of default, for safeguard purposes. but when you have to flip it on and use it, you could have a few hardening to do. The quickest answer: purchase this publication and do what it tells you.Start through hardening home windows Server itself (including oft-neglected steps like keeping log documents so crackers cannot hide). the right way to set up IIS with merely the providers you would like; configure MIME varieties and IP handle regulations; organize SSL and authentication; safe FTP, NNTP, and POP3 or SMTP mail prone, WebDAV, FrontPage extensions, and more.With checklists all through - and "reality assessments" that show a few an important gotchas - this e-book can be pretty well imperative to operating IIS 6.0 directors.
Read or Download CYA Securing IIS 6.0 PDF
Best nonfiction_1 books
A hugely polished open and freely to be had obtain capable cross-genre function taking part in video game rule set from the early Nineteen Nineties. really worth a look.
"
- The Extra Mile: One Woman's Personal Journey to Ultra-Running Greatness
- Entire functions of the Laguerre-Polya class
- Cycling for fitness: get fast, get fit in seven weeks
- Tables of the Zonal Spherical Harmonic of the Second Kind
Additional resources for CYA Securing IIS 6.0
Example text
Subscribe to security notifications via email from Microsoft or other major security mail listings. ■ Security Assessment Review your current setup and requirements from time to time to determine if you have to modify any security-related configurations. REALITY CHECK… Ensure that you start off with the best practice guidelines pro vided to secure your server. Follow up by staying secure to prop erly protect your server. A secure server provides a protected foundation to host IIS applications; it is recommended that you follow every procedure in this section to have a secure web server.
To enable or disable particular services, select Start | Administrative Tools | Services. You can restart, stop and change the startup type of the service. Service startup type can be one of the following: ■ Automatic The service automatically starts when the oper ating system starts. ■ Manual The service is not started when the operating system starts. It can be started by administrators and applications. Hardening Windows Server 2003 • Chapter 2 ■ Disabled The service is completely disabled.
1 IIS Well-Known Ports Service Port Number Hypertext Transfer Protocol (HTTP) HTTP Secure (HTTPS) File Transfer Protocol (FTP) Control Channel FTP Data Channel Simple Mail Transfer Protocol (SMTP) Post Office Protocol v3 (POP3) Network News Transfer Protocol (NNTP) 80 443 21 20 25 110 119 Secure NNTP 563 Microsoft recommends that you use the ICF for small- to mediumsized web project development if you do not have a more sophisticated firewall solution (such as Microsoft Internet Security and Acceleration (ISA) server) deployed.