ok, i have an IIS 6 server (windows server 2003) with about 5 web sites on it.
I notice that when i turn ON write access to my sites, some turkish hacker hacks my site.
When i turn off write access, I'm good to go.
For now, we've been turning off and on write access when we need to update but that's getting old so I decided to chase my security problem.
Where do I start?
I've checked access logs, etc and my passwords are good and solid, but obviously something else is going on.