Solved

security audit iis 7.0

Posted on 2014-02-15
1
191 Views
Last Modified: 2014-02-24
i have a web server and this is our first audit.
our web hosting failed a couple of tests and the recommended fixes are curious to me.

doesnt iis get its updates through regular windows updates?  the fixes for all our failures have remediation of updating secuirty on iis 7.0

but the server is totally updated...
is there an update iis only utility?
0
Comment
Question by:jamesmetcalf74
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 53

Accepted Solution

by:
Scott Fell,  EE MVE earned 500 total points
ID: 39862384
Is this for pci?  are you on a shared server, cloud or dedicated?  

In the case of pci compliance, if you feel something is up to date, you can submit a written response that it is up to date.  I also noticed that I could be scanned and several quarters in a row and no changes to anything and the next scan is throwing a fit mostly over nothing.  I think the scanning companies need to prove their software is doing something.  When I contacted the provider, their answer is "our own software is continually updated...."

However, there were a few items I remember thinking they were trivial and after researching they were not.   Do your research on each item.
0

Featured Post

Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Debug Tools to analyse IIS process: This article focus on taking memory dumps from IIS to determine which code is taking more time and to analyse which calls hangs/causes more CPU usage. To take dumps,download the following. Install1: To st…
Running classic asp applications under Windows Server 2008 R2 (x64) and IIS 7 is not as easy as one may think. It took me a while to figure it out while getting error 8002801d a few times. After you install the OS you will need to install the fol…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question