• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 231
  • Last Modified:

General Security Advice

I have a 5 computer peer to peer network on XP pro. My ADSL internet connection reaches the network through ICS via one of the workstation computers. On this computer I also run IIS. What I want to do is place a client database within the www.root folder of this computer so that my clients can log on through ASP. Hence the IP address will need to be available to the internet without a fire wall. However I want to be able to isolate the other folders in the C drive of this computer and I want all the other computers on the network invisible to the internet. As the data does not contain highly sensitive information what is the best and simpliest approach
0
kempvet
Asked:
kempvet
  • 3
  • 2
1 Solution
 
bloemkool1980Commented:
if you would put your IIS like that on the internet you will get hacked or suffer from DDOS. I would suggest adding at least a firewall and if possible an IDS and reverse proxy.
running IIS  and leaving everything widely open is asking for trouble!
0
 
kempvetAuthor Commented:
Or to rephrase the question what is the best way to put the IIS on the internet. What is the best method to use where there are other computer on the network using ICS.
0
 
bloemkool1980Commented:
THe best way would be to remove all unneeded software from the IIS.
Remove all anonymous access.
remove file and print sharing
remove front page extensions if not needed
do not put your www root on to your c drive
only allow IIS to access its own files and none outside.
reduce the number of processes that can be called by IIS
0
 
kempvetAuthor Commented:
bloemkool1980
with the ISP that I use we have a small database folder on their server, we are able to make this database folder a folder where none of the files can be downloaded, it is possible to do this on the IIS as well? But it all sounds a little complicated, are there any software programs that will wall everything but the IIS off from the internet traffic?
0
 
bloemkool1980Commented:
I suggest you install a firewall to ensure your IIS is walled off.
And if you can read a folder you can download it there is no way around that. If you can read a file nothing will prevent it from being saved to the harddisk. Infact if you read a webpage it is stored on your client machine in the webbrowser cache so.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Increase Security & Decrease Risk with NSPM Tools

Analyst firm, Enterprise Management Associates (EMA) reveals significant benefits to enterprises when using Network Security Policy Management (NSPM) solutions, while organizations without, experienced issues including non standard security policies and failed cloud migrations

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now