RE: Securing IIS Server

Thu, 14 Aug 2003 03:50:27 -0700 

Also check out SecureIIS. We have a free edition for personal use. So if
your looking for something like URLScan, but that actually works, grab
SecureIIS. The free version can be downloaded at
http://www.eeye.com/html/Products/SecureIIS/Download.html

Signed,
Marc Maiffret
Chief Hacking Officer
eEye Digital Security
T.949.349.9062
F.949.349.9538
http://eEye.com/Retina - Network Security Scanner
http://eEye.com/Iris - Network Traffic Analyzer
http://eEye.com/SecureIIS - Stop known and unknown IIS vulnerabilities

| -----Original Message-----
| From: Roland Venter [mailto:[EMAIL PROTECTED]
| Sent: Saturday, August 09, 2003 4:29 AM
| To: 'Justin Martin'; 'NR'; [EMAIL PROTECTED]
| Subject: RE: Securing IIS Server
|
|
| Another Link:
|
| Security Wizards Guide: Securing IIS
| http://www.secwiz.com/Default.aspx?tabid=39
|
|
| -----Original Message-----
| From: Justin Martin [mailto:[EMAIL PROTECTED]
| Sent: Thursday, 7 August 2003 4:09 a.m.
| To: NR; [EMAIL PROTECTED]
| Subject: RE: Securing IIS Server
|
|
| Here is another link for you to look at
|
|
|
| http://www.lokboxsoftware.com/securewin2k/
|
|
|
| Justin
|
| -----Original Message-----
| From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
| Sent: Tuesday, August 05, 2003 1:04 PM
| To: NR; [EMAIL PROTECTED]
| Subject: Re: Securing IIS Server
|
| > -----Original Message-----
| > From: NR [mailto:[EMAIL PROTECTED]
| > Sent: Tuesday, August 5, 2003 10:22 AM
| > To: [EMAIL PROTECTED]
| > Subject: Securing IIS Server
|
| > Hi,
| >
| > I have IIS Server in which i want to install IIS lockdown and URLScan,
| > i heard they are very good to protect IIS server,
| > are they worth installing, and if not, is there any other tools i can
| use
| > to secure my IIS ?
|
| FDISK /MBR and Install Linux or FreeBSD ???  (sorry, couldn't resist)
|
| First, what version of IIS are we talking here ?  IIS 3 or 4 running on
| NT, IIS 5 on 2000, or IIS 6 on 2003 ?
|
| Then comes the task of hardening not just the IIS, but the server you're
| running it on.  IIS is only PART of the task.
|
| If it's 2000,  start here:
|
| http://nsa2.www.conxion.com/win2k/download.htm
|
|
|
|
|
| ------------------------------------------------------------------------
| ---
| ------------------------------------------------------------------------
| ----
|
|
|
| ------------------------------------------------------------------
| ---------
| ------------------------------------------------------------------
| ----------
|
|


---------------------------------------------------------------------------
----------------------------------------------------------------------------

Reply via email to