Adding ASP.NET to IIS5 security concerns
From: Johan Normén (m_at_m.se)
Date: 09/25/03
- Next message: Meena: "Unable to start debugging on a web server."
- Previous message: Alek Davis: "Re: Store private key in cookie?"
- In reply to: Dimitrie: "Adding ASP.NET to IIS5 security concerns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 25 Sep 2003 09:55:41 -0700
Hi,
There are lots of articles etc... about .Net and IIS
Here is one.
http://msdn.microsoft.com/msdnmag/issues/02/04/ASPSec/defa
ult.aspx
Please visit http://msdn.microsoft.com go to the MSDN
Library and search, you will find lots of stuff.
Hope this can help you.
JN
NSQUARED2
Message-----
>I would like to install the DOTNET 1.1 FRMWRK on a
production machine (IIS5
>Win2k). It runs ASP and it's locked down with the IIS
2.1 LockDown Tool and
>a bunch of few other tweaks. The intent is to start
porting old ASP scripts
>to ASPX. No web services intended.
>
>By simply installing the framework and not running any
ASPX scripts is the
>machine still secure? Do I have to take any further
steps to lock down the
>server?
>
>
>Can anyone point me to a Securing IIS5 and .NET guide or
whitepapers?
>Or if you can briefly advise me on the steps it would be
great.
>
>
>Thanks,
>Dimitrie
>
>.
>
- Next message: Meena: "Unable to start debugging on a web server."
- Previous message: Alek Davis: "Re: Store private key in cookie?"
- In reply to: Dimitrie: "Adding ASP.NET to IIS5 security concerns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
