Re: How to Maintain an IIS Server?

From: Ken Schaefer (kenRMV@THISadOpenStatic.com)
Date: 11/06/02 

From: "Ken Schaefer" <kenRMV@THISadOpenStatic.com>
Date: Wed, 6 Nov 2002 13:47:41 +1100

You might want to ask this on a NT Systems Administration group/email list.
The NTSysAdmin email list here: http://www.sunbeltsoftware.com/forums/ is
the one I'd recommend.

Both Trend and Symantec have enterprise AV products that have received good
reviews. We use Symantec NAV Corporate Edition here and are happy with that
(though URLScan is really the first defence against worms that spread via
HTTP requests)

There are a number of good backup/restore utilities. You can use the inbuilt
Windows Backup utility if you just want something basic. However, if you
have multiple servers, a 3rd party product is recommended. Veritas Backup
Exec is what we use here, and we're happy with that.

Cheers
Ken 

--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Stephen Pak" <asiats@hotmail.com> wrote in message
news:eI2#BvThCHA.2700@tkmsftngp09...
> I looked at the Microsoft Security Website.
>
> I understand that there are a lot of information available there.
>
> Actually, I am particular interested in how to prevent worms (e.g.
> Nimda/Code Red/anything else).  What anti-virus program is the best for
IIS
> server running on a Windows 2000 server.
>
> Also, what is the best procedures to restore the IIS server once it is
> hacked by someone.  Or, I should ask what is the best way to backup the
> server.  Any software or product is good for backup/restore (automatically
> backup)  the entire site or even the computer.
>
> Thank you for your help!
>
> Stephen
>
>
> "Ken Schaefer" <kenRMV@THISadOpenStatic.com> wrote in message
> news:eToUpYThCHA.2288@tkmsftngp12...
> > Have you looked at the resources on the Microsoft Security website? They
> > have whitepapers, checklists, tools etc. You need to look at what your
> risks
> > are, and then implement/use the appropriate checklists/hardware/tools.
> >
> > Security is about "risk management", and so "secure" for you might not
be
> > "secure" for me because I face different risks to you. If you can define
> > what security risks you face, then we could comment on what you need to
> do.
> >
> > Also, in addition to securing the IIS server, make sure you secure your
> ASP
> > application that's running on it (eg against SQL Injection attacks, and
> > Cross Site Scripting vulnerabilities etc):
> > eg
> > http://www.nextgenss.com/papers/advanced_sql_injection.pdf
> >
> > Cheers
> > Ken
> >
> > --
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > "Stephen Pak" <asiats@hotmail.com> wrote in message
> > news:uLx7oRThCHA.1712@tkmsftngp11...
> > > Hi everyone,
> > >
> > >
> > >
> > > I have one "simple" (maybe) question for you.  I hope you could help
me
> or
> > > other people.
> > >
> > >
> > >
> > > Could you please share your experiences on how to maintain IIS 5.0
> server
> > > running on a Windows 2000 server machine?
> > >
> > >
> > >
> > > As you know, IIS has so many potential vulnerabilities.  We need to
keep
> > > up-to-date all the patches as well as the possible worms (e.g. Code
> > > Red/Nimda).  I understand that we can tight the security by setting up
> the
> > > firewall or account (user) restrictions.  Also, we can use the MBSA or
> IIS
> > > Lockdown Tool to protect our servers.  However, is there a way to make
> the
> > > server more secure?
> > >
> > >
> > >
> > > Just say.If I want to have an IIS server open to public.  What are the
> > > things I need to be aware of?  Could you please share your experiences
> on
> > > how to admin your server (if you have one) daily?
> > >
> > >
> > >
> > > The reason for me to use an IIS server is that I need to use ASP code
to
> > > implement an online database system.  So.I guess I have to stick with
> the
> > > IIS server.
> > >
> > >
> > >
> > > Thank you,
> > >
> > >
> > >
> > > Stephen
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: How to Maintain an IIS Server?
    ... I looked at the Microsoft Security Website. ... server running on a Windows 2000 server. ... what is the best procedures to restore the IIS server once it is ... > "secure" for me because I face different risks to you. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Getting attacked on port(s) 53, 139, 445 & 1433???
    ... the traffic is originating from your IIS server, ... If you can confirm that the traffic is really coming from your IIS server, ... Note that successful IIS buffer overflow attacks don't show up in the IIS ... > these ports is because these ports are the only ones ...
    (microsoft.public.inetserver.iis.security)
  • Re: Socket programming in asp.net ?
    ... about the client itself is often complex. ... server, and your client machines will more than likely be behind NATs, ... this data received from IIS server machine. ... socket programming concepts in c# will be ...
    (microsoft.public.dotnet.framework.aspnet)
  • Permission problems with IIS 6.0
    ... We have an application that involves client making calls to ISAPI dll ... application server. ... Our IIS server which connects to the above is on a Win2003 machine. ... IUSR_account) and integrated windows authentication. ...
    (microsoft.public.security)
  • Permission problems with IIS 6.0
    ... We have an application that involves client making calls to ISAPI dll ... application server. ... Our IIS server which connects to the above is on a Win2003 machine. ... IUSR_account) and integrated windows authentication. ...
    (microsoft.public.inetserver.iis.security)