• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 959
  • Last Modified:

Hardening Window Web servers(IIS 6, 7)

Hello Experts,

I just wondering if you can provide me with some docs, links, and your recommendations in how to hardening Windows Web servers IIS 6, IIS 7, and deploy full security on these boxes

Any feedback is really appreciated

Thank you in advance
0
Jerry Seinfield
Asked:
Jerry Seinfield
1 Solution
 
JrLzCommented:
Hi,

there's a tool called IIS LockDown from Microsoft, you can take a look for the details
before applying the tool.

hope it helps
0
 
losipCommented:
My favorite is "Improving Web Application Security: Threats and Countermeasures" which is a Microsoft publication and available online.  It complements the "out-of-the-box" security afforded by IIS6 and IIS7 by pointing out that the applications have to be secure, too.

It is a fairly old publication but still has relevant guidelines for application developers. It can be downloaded from: http://www.microsoft.com/downloads/en/details.aspx?FamilyId=E9C4BFAA-AF88-4AA5-88D4-0DEA898C31B9&displaylang=en 

The thread that shalabsharma pointed out on formus.iis.net has some useful pointers, too
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Tackle projects and never again get stuck behind a technical roadblock.
Join Now