|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Lockdown Tool & IIS v6?I know that you should not need to run the Lockdown Tool with v6, but can
you? Our IIS was installed before my time here. I'm not aware of settings that may have been changed and would like to make sure all is secure and as it should be. Thanks, Ann Hi Ann,
This article should help you out UrlScan Security Tool http://www.microsoft.com/technet/security/tools/urlscan.mspx It will explain what was already built in into IIS 6 and what you get from e.g. URLScan Here are some other documents you might want to look at: Threats and Countermeasures http://www.microsoft.com/technet/security/topics/serversecurity/tcg/tcgch00.mspx Windows Server 2003 Security Guide http://www.microsoft.com/technet/security/prodtech/windowsserver2003/w2003hg/sgch00.mspx -- Show quoteHide quoteMike Microsoft MVP - Windows Security "Ann" <A**@discussions.microsoft.com> wrote in message news:DF87C5E3-E706-406F-BFF4-F483ABE04BE6@microsoft.com... >I know that you should not need to run the Lockdown Tool with v6, but can > you? Our IIS was installed before my time here. I'm not aware of settings > that may have been changed and would like to make sure all is secure and > as > it should be. > > Thanks, > > Ann Thanks Miha. I will review this info.
Ann Show quoteHide quote "Miha Pihler [MVP]" wrote: > Hi Ann, > > This article should help you out > > UrlScan Security Tool > http://www.microsoft.com/technet/security/tools/urlscan.mspx > > It will explain what was already built in into IIS 6 and what you get from > e.g. URLScan > > Here are some other documents you might want to look at: > > Threats and Countermeasures > http://www.microsoft.com/technet/security/topics/serversecurity/tcg/tcgch00.mspx > > Windows Server 2003 Security Guide > http://www.microsoft.com/technet/security/prodtech/windowsserver2003/w2003hg/sgch00.mspx > > -- > Mike > Microsoft MVP - Windows Security > > "Ann" <A**@discussions.microsoft.com> wrote in message > news:DF87C5E3-E706-406F-BFF4-F483ABE04BE6@microsoft.com... > >I know that you should not need to run the Lockdown Tool with v6, but can > > you? Our IIS was installed before my time here. I'm not aware of settings > > that may have been changed and would like to make sure all is secure and > > as > > it should be. > > > > Thanks, > > > > Ann > > > 
Other interesting topics
ASP.NET 1.1 + IIS 5 + Nagios
User gets challenged for authentication when opening a document SSL required on non SharePoint web site Is it possible for a trusted site to serve up an untrusted page? Problem with IIS windows authentication IIS6 promps for authentication when trying to execute DLL references.... users log into ftp://domainnameA.com and see domainB.com's directo Secure FTP service? IIS 5 / 6 .htaccess 501 errors due to Microsoft-WebDAV-MiniRedir/5.1.2600 |
|||||||||||||||||||||||
