Shulou(Shulou.com)06/01 Report--

This article mainly explains "how to improve the security of IIS server". The content of the explanation is simple and clear, and it is easy to learn and understand. Please follow the editor's train of thought to study and learn "how to improve the security of IIS server".

The IIS server can be used alone as a Web server or with compatible tools to establish Internet commerce, access and manipulate data from different data sources, and create Web applications that use server scripts and component code to perform some client-server functions.

To improve the security of IIS servers, Microsoft provides two tools: IIS Lockdown and URLScan, of which IIS Lockdown 2.1 includes URLScan.

IIS Lockdown 2.1has the following features:

⑴ disables or removes unnecessary IIS server services and components.

⑵ modifies the default configuration to improve the security of system files and Web content directories.

⑶ uses URLScan to filter HTTP requests.

Let's learn how to use the first two features of IIS server Lockdown 2.1. Note that the instructions in this article are for IIS server Lockdown 2.1, and the usage of previous versions is quite different.

Matters needing attention

The IIS server Lockdown changes the way the IIS server runs, so it is likely to conflict with applications that rely on some features of the IIS server. In particular, you should be careful if you want to install IIS servers Lockdown and URLScan on a server running Microsoft Exchange 2000 Server, Exchange Server 5.5, or Microsoft SharePoint Portal Server.

Two Microsoft articles explain possible difficulties and solutions: "XADM: known problems and tuning strategies for using the IIS server Lockdown wizard in an Exchange 2000 environment" (http://support.microsoft.com/default.aspx?scid=kb;en-us;q309677), and "SPS:IIS server Lockdown tools affect SharePoint Portal Server" (http://support.microsoft.com/default.aspx?scid=kb;en-us;q309675).

In addition, before formally applying IIS server Lockdown or URLScan, be sure to search Microsoft's knowledge base to collect data that may have problems.

After mastering these materials and understanding its recommendations, install the IIS server Lockdown on the test server to comprehensively test whether the IIS server functions required by the Web application are affected. * make a full backup of the system so that you can recover quickly when the system function is seriously affected.

Thank you for reading, the above is the content of "how to improve the security of IIS server". After the study of this article, I believe you have a deeper understanding of how to improve the security of IIS server. Here is, the editor will push for you more related knowledge points of the article, welcome to follow!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.