|
|||||||
 |
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
02-27-2006, 11:01 AM
|
#1 |
|
Member (8 bit)
Join Date: Mar 2004
Posts: 213
|
Concerns running IIS
What are some security concerns running IIS 6 if any? How do I minimize some of these security holes? Mainly I'm going to use IIS for running WSUS. It is require by this application. What are some suggestions on how to configure IIS so that it will at the very minimal for WSUS?
|
|
|
|
02-27-2006, 11:18 AM
|
#2 |
|
Staff
Premium Member
Join Date: Jul 1999
Location: Arlington, TN
Posts: 5,538
|
Will this server be on the public internet?
__________________
Want to Make $$$$ with your Computer? No Risk! Simply press shift-4 four times in a row |
|
|
|
|
02-27-2006, 01:29 PM
|
#3 |
|
Member (8 bit)
Join Date: Mar 2004
Posts: 213
|
This server is intended for private use but it does have a public IP.
|
|
|
|
|
02-27-2006, 02:03 PM
|
#4 |
|
Come in Ray...
Join Date: Sep 2004
Posts: 1,668
|
IIS is pretty secure out of the box. You shouldn't have to do anything just to get an html/asp/php site running.
The only thing which introduces security holes is when you start tinkering with accounts the IIS services run as. Very seldom do you have to do this though. |
|
|
|
|
02-27-2006, 02:15 PM
|
#5 |
|
Member (8 bit)
Join Date: Mar 2004
Posts: 213
|
Thanks!
|
|
|
|
|
02-27-2006, 02:21 PM
|
#6 | |
|
Staff
Premium Member
Join Date: Jul 1999
Location: Arlington, TN
Posts: 5,538
|
Quote:
|
|
|
|
|
|
02-27-2006, 03:43 PM
|
#7 | ||
|
Its the Dark Side!
Join Date: Jan 2004
Location: Kitchener, Ontario, Canada
Posts: 1,111
 |
I used IIS for awhile when running an FTP/Web server. Then I learned of how it can be a danger using IIS for public use. I then switched to Apache, and my server has been running properly without a hitch. But for internal use, IIS shouldnt really pose a security hole.
HTH
__________________
CN 
|
||
|
|
|
|
02-27-2006, 03:50 PM
|
#8 |
|
Member (8 bit)
Join Date: Mar 2004
Posts: 213
|
Okay, so if I only allow IP address of all my computers to access the IIS server then that should do it, right? What other things should I consider?
|
|
|
|
|
02-27-2006, 03:58 PM
|
#9 |
|
Its the Dark Side!
Join Date: Jan 2004
Location: Kitchener, Ontario, Canada
Posts: 1,111
|
you shouldnt need to do that. Just dont foward any ports on your router that IIS will be using (i.e. If you were to use IIS as a web server, just dont foward port 80 on your router to direct any incoming requests on that port to your server IP. Beyond that, you can set it up so you would need to type the IP address of the server on whatever client computer you are on.
HTH |
|
|
|
|
02-27-2006, 04:31 PM
|
#10 |
|
Come in Ray...
Join Date: Sep 2004
Posts: 1,668
|
ComputerNut,
If he wants to publish his website using IIS on a public IP, he will have to set up port forwarding on his router. Otherwise port 80 would be blocked. What security issues did you find with IIS 6? I would be interested to know as I have about 100 ASP.Net sites running off IIS 6. |
|
|
|
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Linear Mode
