?
Solved

security audit iis 7.0

Posted on 2014-02-15
1
Medium Priority
?
197 Views
Last Modified: 2014-02-24
i have a web server and this is our first audit.
our web hosting failed a couple of tests and the recommended fixes are curious to me.

doesnt iis get its updates through regular windows updates?  the fixes for all our failures have remediation of updating secuirty on iis 7.0

but the server is totally updated...
is there an update iis only utility?
0
Comment
Question by:jamesmetcalf74
1 Comment
 
LVL 55

Accepted Solution

by:
Scott Fell,  EE MVE earned 2000 total points
ID: 39862384
Is this for pci?  are you on a shared server, cloud or dedicated?  

In the case of pci compliance, if you feel something is up to date, you can submit a written response that it is up to date.  I also noticed that I could be scanned and several quarters in a row and no changes to anything and the next scan is throwing a fit mostly over nothing.  I think the scanning companies need to prove their software is doing something.  When I contacted the provider, their answer is "our own software is continually updated...."

However, there were a few items I remember thinking they were trivial and after researching they were not.   Do your research on each item.
0

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
Watch the video to learn how one can deal with PST file corruption issue with an outstanding Kernel for Outlook PST Repair Tool easily. Using this tool, non-technical users can swiftly perform the repair process to restore their essential data witho…
Watch the video to know how one can repair corrupt Exchange OST file effortlessly and convert OST emails to MS Outlook PST file format by using Kernel for OST to PST converter tool. It can convert OST to MSG, MBOX, EML to access them. It can migrate…

589 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question