RE: MS IIS Lockdown tool

From: Andrew Langton (andrew.langton@BabcockBrown.com)
Date: 09/26/01 

Message-ID: <D32FD03F4910D511AF3F00508BA54CCE06DD19@sfomail.babcockbrown.com>
From: Andrew Langton <andrew.langton@BabcockBrown.com>
To: "'dmccartney@core.com'" <dmccartney@core.com>, security-basics@securityfocus.com
Subject: RE: MS IIS Lockdown tool
Date: Wed, 26 Sep 2001 12:07:11 -0700

Well I used it and it broke OWA :) So now I have to figure out what OWA
needs minimum.

It didn't unregister the ida, etc, either.

> -----Original Message-----
> From: Daymon McCartney [mailto:dmccartney@core.com]
> Sent: Monday, September 24, 2001 6:56 PM
> To: security-basics@securityfocus.com
> Subject: MS IIS Lockdown tool
>
>
> Has anyone had any experience with Microsoft's IIS Lockdown
> tool? If so,
> what do you think?
>
> It says it prevents Code Red, Nimda, and other sorts of
> viruses without
> having the patches installed. Obviously you should still
> patch your boxes
> (and MS clearly states this on their webite), but it could
> save a lot of
> companies headaches!
>

This email message may contain information that is confidential and
proprietary to Bab*** & Brown or a third party. If you are not the
intended recipient, please contact the sender and destroy the original and
any copies of the original message. Bab*** & Brown takes measures to
protect the content of its communications. However, Bab*** & Brown cannot
guarantee that email messages will not be intercepted by third parties or
that email messages will be free of errors or viruses.