|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
IIS on Vista & IISLockdown/UrlScanDoes anyone have any suggestions for what security steps need to be taken to
secure a basic web server in Vista running ASP.NET 2.0 pages with some VB.NET?IISLockdown doesn't list Vista in supported products so am I right to assume it isn't needed in Vista? Should I take it URLScan functions are already included? I don't mind reading some articles on it if they exist, but would appreciate any pointers n the right direction. Thanks a bunch. In IIS 7, you will get request filtering feature which is essentially
URLScan in a way read - http://www.iis.net/default.aspx?tabid=2&subtabid=25&i=1040 -- Show quoteHide quoteRegards, Bernard Cheah http://www.iis.net/ http://www.iis-resources.com/ http://msmvps.com/blogs/bernard/ "Stephen" <Stephen @discussions.microsoft.com> wrote in message news:050E1E0D-D881-4707-81F4-CD070966BB4B@microsoft.com... > Does anyone have any suggestions for what security steps need to be taken > to > secure a basic web server in Vista running ASP.NET 2.0 pages with some > VB.NET?IISLockdown doesn't list Vista in supported products so am I right > to > assume it isn't needed in Vista? Should I take it URLScan functions are > already included? I don't mind reading some articles on it if they exist, > but > would appreciate any pointers n the right direction. Thanks a bunch. Just restating the obvious, but note that Vista is unsupported pre-release
software, and as such is not meant for production use, just testing. -- Show quoteHide quotekind regards, Karl Levinson, CISSP, CCSA, MCSE [MS MVP] ------------------------- Microsoft Security FAQ: http://www.securityadmin.info "Stephen" wrote: > Does anyone have any suggestions for what security steps need to be taken to > secure a basic web server in Vista running ASP.NET 2.0 pages with some > VB.NET?IISLockdown doesn't list Vista in supported products so am I right to > assume it isn't needed in Vista? Should I take it URLScan functions are > already included? I don't mind reading some articles on it if they exist, but > would appreciate any pointers n the right direction. Thanks a bunch. 
Other interesting topics
Is there a way to avoid/security alert box from redirecting to HTTP to HTTPS?
Can Somone Tell Me If We Have a Hacker? login problem with iis and webdav. A little help (kerberos, netbios, and SPN... oh my!) security error in IIS logs (401.2 error) The IIS service does not seem to be serving up .asmx or .asp pages New HTTPS web site and certificate installation Filtering Query String IIS6 HTTPS POST not being returned to .ASP file... IIS5: Renew certificate |
|||||||||||||||||||||||
