• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 233
  • Last Modified:

General Security Advice

I have a 5 computer peer to peer network on XP pro. My ADSL internet connection reaches the network through ICS via one of the workstation computers. On this computer I also run IIS. What I want to do is place a client database within the www.root folder of this computer so that my clients can log on through ASP. Hence the IP address will need to be available to the internet without a fire wall. However I want to be able to isolate the other folders in the C drive of this computer and I want all the other computers on the network invisible to the internet. As the data does not contain highly sensitive information what is the best and simpliest approach
0
kempvet
Asked:
kempvet
  • 3
  • 2
1 Solution
 
bloemkool1980Commented:
if you would put your IIS like that on the internet you will get hacked or suffer from DDOS. I would suggest adding at least a firewall and if possible an IDS and reverse proxy.
running IIS  and leaving everything widely open is asking for trouble!
0
 
kempvetAuthor Commented:
Or to rephrase the question what is the best way to put the IIS on the internet. What is the best method to use where there are other computer on the network using ICS.
0
 
bloemkool1980Commented:
THe best way would be to remove all unneeded software from the IIS.
Remove all anonymous access.
remove file and print sharing
remove front page extensions if not needed
do not put your www root on to your c drive
only allow IIS to access its own files and none outside.
reduce the number of processes that can be called by IIS
0
 
kempvetAuthor Commented:
bloemkool1980
with the ISP that I use we have a small database folder on their server, we are able to make this database folder a folder where none of the files can be downloaded, it is possible to do this on the IIS as well? But it all sounds a little complicated, are there any software programs that will wall everything but the IIS off from the internet traffic?
0
 
bloemkool1980Commented:
I suggest you install a firewall to ensure your IIS is walled off.
And if you can read a folder you can download it there is no way around that. If you can read a file nothing will prevent it from being saved to the harddisk. Infact if you read a webpage it is stored on your client machine in the webbrowser cache so.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now