Re: Websites getting hacked

From: x y (jamescagney90210@yahoo.com)
Date: 06/13/02

• Next message: Tom Pepper Willett: "Re: HTR flaw - another way"
• Previous message: Steve H: "Re: HTR flaw - another way"
• In reply to: tc: "Websites getting hacked"
• Next in thread: Kit: "Re: Websites getting hacked"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "x y" <jamescagney90210@yahoo.com>
Date: Thu, 13 Jun 2002 17:59:46 -0400

The other post is good advice. Also, check www.microsoft.com/security for
more things to do to secure your system, very highly recommended. Most
important are installing all security patches, installing IISlockdown with
URLscan for IIS web services, and make sure the FTP anonymous user does not
have both read and write access to any folder. You may want to check your
IIS web server log [if it is enabled, ENABLE it if it is not] for other
possible hacking. Look for any entry that contains % or .EXE along with a
200 or 502 error code. These entries are not necessarily successful
hacking, but could be. I find it very difficult to investigate web servers
that are set to start a new log every day, so I recommend changing this
setting in IIS to a new log every month.

In general, using an antivirus program that is set to download updates every
day [such as norton], along with a hardware firewall such as netgear or
linksys BEFSR41 [starting at $70] AND a software firewall starting with
Sygate [free for non-commercial use] is also helpful. I also recommend the
free languard file integrity checker program from www.gfi.com All this
should help you secure your system somewhat.

"tc" <tcruise@ev1.net> wrote in message
news:e66301c212ef$c5476770$3aef2ecf@TKMSFTNGXA09...
> I have my websites running on IIS 5.0, Win2k SP2... also
> running FTP service on the same machine. Periodically,
> the server gets hacked. The hacker dumps a bunch of
> folders with names like "@tagged, com, by,..., etc." and
> then stores MP3 files in them.. or whatever. I know how to
> remove the stuff but sooner or later it gets hacked again.
>
> How do I better secure my web/ftp server? Specifically, I
> need to prevent this from happening.
>
> Thank you.

---

• Next message: Tom Pepper Willett: "Re: HTR flaw - another way"
• Previous message: Steve H: "Re: HTR flaw - another way"
• In reply to: tc: "Websites getting hacked"
• Next in thread: Kit: "Re: Websites getting hacked"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages WebServer Setup Tutorial ... Are there any online tutorials for installing and setting up a box with ... Fedora Core 4 as a web server that you guys would recommend? ... (comp.os.linux.setup) Re: WebServer Setup Tutorial ... > Are there any online tutorials for installing and setting up a box with ... > Fedora Core 4 as a web server that you guys would recommend? ... source code and extensive manuals can be found. ... (comp.os.linux.setup) Re: Please help, directory level protection needed. ... > you rely on the Web Server to implement a check to control access. ... >> I am trying to implement a secure software update directory. ... > free download to your software program, ... (microsoft.public.inetserver.iis.security) RE: newbie -how do you defend your decision? ... Concerning the Web server, IIS 6 is the most secure Web server available. ... Microsoft solution is the support you get, whether from our MVPs, ... (microsoft.public.dotnet.framework.aspnet) RE: Inspecting Code for Security ... The book itself is an excellent discussion of security from a technical ... Writing Secure Code {which is also on my ... Secure Code for Windows". ... Both books are excellent, and I would recommend either one, but only to the ... (SecProg)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)