Security Basics mailing list archives
Re: Securing IIS Server
From: chris <chris09 () linuxmail org>
Date: 5 Aug 2003 17:15:55 -0000
In-Reply-To: <20030805102226.3347.qmail () www securityfocus com> IIS is most vulnerable to directory traversal attacks. Yes you can secure your IIS server by using the most up to date version and removing all the default files that come installed with it, unless you NEED them for something. Start by installing the server and messing with its various policy options. What your hosting on your server is relevant to, if its straight HTML then theres no need for SSL, turn it off etc. X-focus (the group that just released that RPC exploit code) has an EXCELLENT HTTP/IIS scanner. Search google for that one (xfocus scanner) or theres many others on the net im just not sure where at the moment. The IIS Lock down tools do work well also, they filter out alot of directory traversal attacks. Chris http://www.cr-secure.net (soon)
Received: (qmail 16214 invoked from network); 5 Aug 2003 15:41:17 -0000 Received: from outgoing3.securityfocus.com (205.206.231.27) by mail.securityfocus.com with SMTP; 5 Aug 2003 15:41:17 -0000 Received: from lists.securityfocus.com (lists.securityfocus.com
[205.206.231.19])
by outgoing3.securityfocus.com (Postfix) with QMQP
id B3B50A30D1; Tue, 5 Aug 2003 09:44:18 -0600 (MDT)
Mailing-List: contact security-basics-help () securityfocus com; run by ezmlm
Precedence: bulk
List-Id: <security-basics.list-id.securityfocus.com>
List-Post: <mailto:security-basics () securityfocus com>
List-Help: <mailto:security-basics-help () securityfocus com>
List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com>
List-Subscribe: <mailto:security-basics-subscribe () securityfocus com>
Delivered-To: mailing list security-basics () securityfocus com
Delivered-To: moderator for security-basics () securityfocus com
Received: (qmail 6382 invoked from network); 5 Aug 2003 10:27:46 -0000
Date: 5 Aug 2003 10:22:26 -0000
Message-ID: <20030805102226.3347.qmail () www securityfocus com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
X-Mailer: MIME-tools 5.411 (Entity 5.404)
From: NR <nr6106 () hotmail com>
To: security-basics () securityfocus com
Subject: Securing IIS Server
Hi,
I have IIS Server in which i want to install IIS lockdown and URLScan,
i heard they are very good to protect IIS server,
are they worth installing,
and if not, is there any other tools i can use to secure my IIS ?
Thanks and Regards
NR
--------------------------------------------------------------------------
-
--------------------------------------------------------------------------
--
--------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Securing IIS Server NR (Aug 05)
- RE: Securing IIS Server dave kleiman (Aug 05)
- Data Compression Hendra Santosa (Aug 06)
- Re: Data Compression Glenn English (Aug 07)
- Re: Data Compression Gabriel Orozco (Aug 07)
- RE: Data Compression Paul Farag (Aug 07)
- Data Compression Hendra Santosa (Aug 06)
- Re: Securing IIS Server Simon Gray (Aug 06)
- RE: Securing IIS Server MeaCulpa (Aug 06)
- <Possible follow-ups>
- RE: Securing IIS Server Robinson, Sonja (Aug 06)
- Re: Securing IIS Server salgak (Aug 06)
- Re: Securing IIS Server chris (Aug 06)
- RE: Securing IIS Server Jay Woody (Aug 06)
- RE: Securing IIS Server Justin Martin (Aug 06)
- RE: Securing IIS Server Roland Venter (Aug 11)
- RE: Securing IIS Server Marc Maiffret (Aug 11)
- RE: Securing IIS Server Roland Venter (Aug 11)
- RE: Securing IIS Server Chris Neppes (Aug 06)
- RE: Securing IIS Server dave kleiman (Aug 05)