Dave
Wed Jul 13 05:53:34 CDT 2005
first decide what level of security you want/need. obviously if this is a
server in a computer lab accessed by students you will have a hard time
doing anything really secure on it. if you really do need to secure it from
anyone else the first step is to take that server off the network, reinstall
all software from scratch and keep it out of reach of all students, if
anyone has physical access to a machine they can access anything they want
on it. then make sure you have all patches up to date. add a firewall to
block everything except port 80 and/or 443. then start reading about what
specific steps you need to take with iis. the iis lockdown tool from
microsoft is a good start, as is their free urlscan tool. start reading on
microsoft's support site with:
http://support.microsoft.com/search/default.aspx?mode=s&cat=false&query=iis+security&srch=sup
but there are also other white papers and info available that i don't have
the links for on this machine, i'm sure someone will post them shortly for
you, or you can also scan the old messages on the
microsoft.public.inetserver.iis.security group that probably has more direct
security info.
"Madina" <niet_azhar@hotmail.com> wrote in message
news:%23NXoTr4hFHA.1244@TK2MSFTNGP14.phx.gbl...
> Hello...
> I am a student in college studying computer science engg in India.Here we
> dont have any New and Advanced stuff to read..So we have to learn all new
> and advanced stuff on our own.
>
> In my College lab.A server connected to 100 systems .And I have Already
> developed a website for it...Before uploading it to IIS are there any
> precautions and security related Issues .
>
>
>