Hardening Window Web servers(IIS 6, 7)

Hello Experts,

I just wondering if you can provide me with some docs, links, and your recommendations in how to hardening Windows Web servers IIS 6, IIS 7, and deploy full security on these boxes

Any feedback is really appreciated

Thank you in advance
Jerry SeinfieldAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
JrLzCommented:
Hi,

there's a tool called IIS LockDown from Microsoft, you can take a look for the details
before applying the tool.

hope it helps
0
 
losipCommented:
My favorite is "Improving Web Application Security: Threats and Countermeasures" which is a Microsoft publication and available online.  It complements the "out-of-the-box" security afforded by IIS6 and IIS7 by pointing out that the applications have to be secure, too.

It is a fairly old publication but still has relevant guidelines for application developers. It can be downloaded from: http://www.microsoft.com/downloads/en/details.aspx?FamilyId=E9C4BFAA-AF88-4AA5-88D4-0DEA898C31B9&displaylang=en 

The thread that shalabsharma pointed out on formus.iis.net has some useful pointers, too
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.