Re: IIS still vulnerable

From: Jeff Cochran (jcochran.nospam_at_naplesgov.com)
Date: 12/29/03

• Next message: Christopher Haun: "RE: IIS-Rechteproblem"
• Previous message: Christopher Haun: "RE: IIS still vulnerable"
• In reply to: Johnny: "IIS still vulnerable"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Mon, 29 Dec 2003 19:07:51 GMT

On Mon, 29 Dec 2003 08:26:53 -0800, "Johnny"
<anonymous@discussions.microsoft.com> wrote:

>IIS with all the lastest updates/patches and some kid
>executes code on the machine, uploads an FTP daemon then
>and uploads 10gb of movies & games - he usually puts
>everything into iissamples. - its all in German!!!

Then you obviously missed something. Updates and patches don't help
if you forget all the other security issues, such as weak passwords,
leaving port 137-139 open on the firewall, running SQL with a blank SA
password, etc.

Start here to fix this:

http://securityadmin.info/faq.asp#hackerstoc

Jeff

---

• Next message: Christopher Haun: "RE: IIS-Rechteproblem"
• Previous message: Christopher Haun: "RE: IIS still vulnerable"
• In reply to: Johnny: "IIS still vulnerable"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)