Riguy Index and Archive:

 

 

Internet Information Server

 

This is my own reference point for links/info relating to Microsoft's Internet Information Server (IIS), which I currently am using to host my web site at home. The trick with implementing IIS from a home Windows 2000 Server is to be certain that DNS is functioning correctly 100%. For the home (SOHO) setup, I have an internal AD/DDNS structure (i.e. inner_domain.local) which receives private IP addresses from the Windows DHCP Server. Another zone handles the outside world requests coming into the static IP address assigned from my ISP.


If you find it useful by any chance, great. Due to security issues and concerns, I have a lot of reading to do, and I keep losing these links, and also need a reference point from several locations sometimes. So bookmarking doesn't always cut it.

URLScan = IIS protection. IIS has come a long way since Nimda and Code Red. Most now consider IIS generally secure, although security threat potential is always around the corner.

http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q307608&

The importance of Logging, demonstrated here. The log shows how URLScan fends off various sinister GET requests and other nefarious connection attempts:

** Excellent description of Code Red, from the people who actually diagnosed it in the first place:

http://www.eeye.com/html/Research/Advisories/AL20010717.html

MS IIS Pages:

http://www.microsoft.com/technet/iis/default.asp

IIS clearinghouse:

http://www.iisanswers.com/

IIS FAQ:

http://www.iisfaq.com/

It's not just IIS that has had some security lapses! Imagine, even the hallowed APACHE Web Server has had flaws.

http://www.apacheweek.com/features/security-13

Back to:

Last Modified: Winter, 2006

 

Search Google for Related Content:
Google