amlydiate
asked on
Redirect instead of IIS7 Welcome screen
Hi all,
We've recently had a penetration test carried out on our network and a series of low risk issues were raised. One of them was that when you enter the external IP address of my clients 2011SBS server it comes up with the IIS7 welcome page, in their words "this means that the web server has not been hardened". Their recommendation is to remove the IIS 7 welcome page and replace it with a redirect. Not being any good with IIS I was wondering if someone could give me a quick step by step guide on how to acheive this to get rid of this "risk"
Many thanks
Adam
We've recently had a penetration test carried out on our network and a series of low risk issues were raised. One of them was that when you enter the external IP address of my clients 2011SBS server it comes up with the IIS7 welcome page, in their words "this means that the web server has not been hardened". Their recommendation is to remove the IIS 7 welcome page and replace it with a redirect. Not being any good with IIS I was wondering if someone could give me a quick step by step guide on how to acheive this to get rid of this "risk"
Many thanks
Adam
Hi
The easiest thing to do is to replace the default page with a newly created one liner.
<% Response.Redirect( url ) %>
http://msdn.microsoft.com/en-us/library/ms524309(v=vs.90).aspx
That link shows you some simple but powerful things you could do.
Thanks,
The easiest thing to do is to replace the default page with a newly created one liner.
<% Response.Redirect( url ) %>
http://msdn.microsoft.com/en-us/library/ms524309(v=vs.90).aspx
That link shows you some simple but powerful things you could do.
Thanks,
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you, that's all it was!! Removed port 80 forward to server and that's done the trick. Thanks to everyone else but this was by far the quickest and most straightforward answer.
http://www.trainsignal.com/blog/iis7-redirect-windows-server-2008