Solved

Securing iis by installing xp in a different folder

Posted on 2004-05-01
4
291 Views
Last Modified: 2013-12-04
I am right in saying that this is not possible unless there is an existing xp installation already located in the C drive. For security reasons it is then possible to install another copy of xp in say H:/dppfddn/ which is supposed to make it hard for the hacker to find it. But then what happens to the other xp in the C drive. I have created the H:/dppfddn/ file by placing the hard disk in another machine but when I try to install xp into this directory on the original machine I can select the partition and select the drive H:/ but there is no way to select the dppfddn/ folder, the only choice I have is to overwrite the entire partition when I install xp.
In all the articles I have read about this issue they all mention this issue at the end rather than at the beginning. Does anyone know an article that gives clear instructionseft on this issue.
0
Comment
Question by:kempvet
  • 3
4 Comments
 
LVL 7

Expert Comment

by:rhrowson
ID: 10966999
You can move the inetpub directory by following these instructions from MS.

http://support.microsoft.com/default.aspx?scid=kb;en-us;261002
0
 
LVL 7

Assisted Solution

by:rhrowson
rhrowson earned 150 total points
ID: 10967000
By the way moving the Inetpub folder is security through obscurity. DO not neglect other things like patching the box up to date, hardening directories, the registry - the list goes on. MS have  alot of documentaiton on IIS hardening
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 100 total points
ID: 10967613
IIS lock down and best practices, like using AV, a firewall, and keeping up on M$ patches and updates... Security is a process not a program, and secruity through obsecurity is a small small small attempt to through someone off. The compromise will still happen to the RUNNING os even if you've managed to install another that looks similar... it won't fool IIS, or your hacker.
http://www.microsoft.com/downloads/details.aspx?FamilyID=DDE9EFC0-BB30-47EB-9A61-FD755D23CDEC&displaylang=en
http://www.securityfocus.com/infocus/1755
http://www.windowsecurity.com/articles/Locking_Down_IIS_60_with_NET_The_Default_Security_Wizard.html
(use apache as a webserver)
-rich
0
 
LVL 7

Assisted Solution

by:rhrowson
rhrowson earned 150 total points
ID: 10968358
As Rich says, go through the security process, whether it is Windows and IIS or Windoww snad apache, Linux and apache. (You get the picture). All OS's are vulnerable - just some are harder to break than others. NT4 is definitely a bit of a sieve and Windows 2000 pre SP3 is the same. Unfortuately Apache also has a range of vulnerabilities. Some of which are the same as for IIS and others are different.

People have written books on why to use one web server over another. You neeed to weigh the facilities you need, and your abilities to configure them before deciding which web server to use.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
OfficeMate Freezes on login or does not load after login credentials are input.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question