?
Solved

Masking the way Windows 2003 web server looks to crackers.

Posted on 2004-03-23
4
Medium Priority
?
223 Views
Last Modified: 2010-04-19
I want my 2003 IIS 6 web server to look like a Linux server or another server for that matter when people are scanning and probing the network. Is this possible?
0
Comment
Question by:bstearns
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 2

Accepted Solution

by:
Ugrum earned 2000 total points
ID: 10661715
THe people who are scanning will be able to determine the OS that host is running with 99.999% probability - they will just use OS fingerprinting, the method which analyzes network packets at a very low level to find OS-specific patterns. Of course, the fact that the web server runs Windows 2003 does not neccessary means that the website itself is running on IIS 6.0 (you can install Apache and others...), but it's the most likely scenario.
As to hide, you can use some form of reverse proxy to publish your website on a host that is not running Windows.
0
 

Author Comment

by:bstearns
ID: 10662193
Thank you for the help.
0
 
LVL 16

Expert Comment

by:JamesDS
ID: 10665076
Ugrum is right

OS fingerprinting goes down to the very way in which certin IP packets are responded to - and while it is possible to change that what usually happens is you end up with a duff TCP stack :(

To be honest why would you want to hide it? IIS 6, when properly set up, behind a firewall and well patched is extremely secure and superior in terms of speed and functionality to best of the competitors.

If you want to protect against scans and probes (as you put it!) then install and properly configure a firewall, I recommend you look at www.kerio.com for some of the best personal and enterprise firewall software on the market today.

Cheers

JamesDS
0
 

Author Comment

by:bstearns
ID: 10670969
Thank you JamesDS for your insight as well.
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question