Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

General Security Advice

Posted on 2004-04-19
5
207 Views
Last Modified: 2010-04-11
I have a 5 computer peer to peer network on XP pro. My ADSL internet connection reaches the network through ICS via one of the workstation computers. On this computer I also run IIS. What I want to do is place a client database within the www.root folder of this computer so that my clients can log on through ASP. Hence the IP address will need to be available to the internet without a fire wall. However I want to be able to isolate the other folders in the C drive of this computer and I want all the other computers on the network invisible to the internet. As the data does not contain highly sensitive information what is the best and simpliest approach
0
Comment
Question by:kempvet
  • 3
  • 2
5 Comments
 
LVL 6

Expert Comment

by:bloemkool1980
ID: 10857864
if you would put your IIS like that on the internet you will get hacked or suffer from DDOS. I would suggest adding at least a firewall and if possible an IDS and reverse proxy.
running IIS  and leaving everything widely open is asking for trouble!
0
 

Author Comment

by:kempvet
ID: 10857951
Or to rephrase the question what is the best way to put the IIS on the internet. What is the best method to use where there are other computer on the network using ICS.
0
 
LVL 6

Expert Comment

by:bloemkool1980
ID: 10859050
THe best way would be to remove all unneeded software from the IIS.
Remove all anonymous access.
remove file and print sharing
remove front page extensions if not needed
do not put your www root on to your c drive
only allow IIS to access its own files and none outside.
reduce the number of processes that can be called by IIS
0
 

Author Comment

by:kempvet
ID: 10859252
bloemkool1980
with the ISP that I use we have a small database folder on their server, we are able to make this database folder a folder where none of the files can be downloaded, it is possible to do this on the IIS as well? But it all sounds a little complicated, are there any software programs that will wall everything but the IIS off from the internet traffic?
0
 
LVL 6

Accepted Solution

by:
bloemkool1980 earned 250 total points
ID: 10859271
I suggest you install a firewall to ensure your IIS is walled off.
And if you can read a folder you can download it there is no way around that. If you can read a file nothing will prevent it from being saved to the harddisk. Infact if you read a webpage it is stored on your client machine in the webbrowser cache so.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Knowing where your website is hosted is as important as the features you receive, the monthly fee, and the support you receive. Due diligence should be done when choosing your next hosting provider.
There's a lot of hype surrounding blockchain technology. Here's how it works and some of the novel ways it' s now being used - including for data protection.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question