Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

General Security Advice

Posted on 2004-04-19
5
Medium Priority
?
224 Views
Last Modified: 2010-04-11
I have a 5 computer peer to peer network on XP pro. My ADSL internet connection reaches the network through ICS via one of the workstation computers. On this computer I also run IIS. What I want to do is place a client database within the www.root folder of this computer so that my clients can log on through ASP. Hence the IP address will need to be available to the internet without a fire wall. However I want to be able to isolate the other folders in the C drive of this computer and I want all the other computers on the network invisible to the internet. As the data does not contain highly sensitive information what is the best and simpliest approach
0
Comment
Question by:kempvet
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 6

Expert Comment

by:bloemkool1980
ID: 10857864
if you would put your IIS like that on the internet you will get hacked or suffer from DDOS. I would suggest adding at least a firewall and if possible an IDS and reverse proxy.
running IIS  and leaving everything widely open is asking for trouble!
0
 

Author Comment

by:kempvet
ID: 10857951
Or to rephrase the question what is the best way to put the IIS on the internet. What is the best method to use where there are other computer on the network using ICS.
0
 
LVL 6

Expert Comment

by:bloemkool1980
ID: 10859050
THe best way would be to remove all unneeded software from the IIS.
Remove all anonymous access.
remove file and print sharing
remove front page extensions if not needed
do not put your www root on to your c drive
only allow IIS to access its own files and none outside.
reduce the number of processes that can be called by IIS
0
 

Author Comment

by:kempvet
ID: 10859252
bloemkool1980
with the ISP that I use we have a small database folder on their server, we are able to make this database folder a folder where none of the files can be downloaded, it is possible to do this on the IIS as well? But it all sounds a little complicated, are there any software programs that will wall everything but the IIS off from the internet traffic?
0
 
LVL 6

Accepted Solution

by:
bloemkool1980 earned 750 total points
ID: 10859271
I suggest you install a firewall to ensure your IIS is walled off.
And if you can read a folder you can download it there is no way around that. If you can read a file nothing will prevent it from being saved to the harddisk. Infact if you read a webpage it is stored on your client machine in the webbrowser cache so.
0

Featured Post

Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How does someone stay on the right and legal side of the hacking world?
Ransomware, the malware that locks down its victim’s files until they pay up, has always been a frustrating issue to deal with. However, a recent mobile ransomware will make the issue a little more personal… by sharing the victim’s mobile browsing h…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…

596 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question