Security Basics mailing list archives

RE: Securing IIS Server

From: "Chris Neppes" <cneppes () port80software com>
Date: Wed, 6 Aug 2003 08:54:53 -0700

Also, modify header data and TCP/IP settings defeat tools like Nmap...

http://www.port80software.com/support/articles/maskyourwebserver

- Chris

    ::::::::::     ::::::::::

Chris Neppes 
Port80 Software, Inc. 
www.port80software.com  

5252 Balboa Ave., Ste. 605 
San Diego, CA 92117 
cneppes () port80software com
858.268.7960 voice
619.733.7484 cell 
858.268.7760 fax

Web server modules for Microsoft IIS.
security. performance. user experience.




-----Original Message-----
From: Robinson, Sonja [mailto:SRobinson () HIPUSA com] 
Sent: Tuesday, August 05, 2003 9:28 AM
To: 'NR'; security-basics () securityfocus com
Subject: RE: Securing IIS Server


Yes and tripwire for monitoring

Sonja Robinson, CISA
Network Security Analyst
HIP Health Plans
Office:  212-806-4125
Pager: 8884238615



-----Original Message-----
From: NR [mailto:nr6106 () hotmail com] 
Sent: Tuesday, August 05, 2003 6:22 AM
To: security-basics () securityfocus com
Subject: Securing IIS Server





Hi,

I have IIS Server in which i want to install IIS lockdown and URLScan, i
heard they are very good to protect IIS server, are they worth
installing, and if not, is there any other tools i can use to secure my
IIS ?

Thanks and Regards
NR

------------------------------------------------------------------------
---
------------------------------------------------------------------------
----


**********************************************************************
CONFIDENTIALITY NOTICE: This e-mail transmission, including any
attachments to it,  may contain confidential information or protected
health information subject to privacy regulations such as the Health
Insurance Portability and Accountability Act of 1996 (HIPAA). This
transmission is intended only for the use of the recipient(s) named
above.  If you are not the intended recipient, or a person responsible
for delivering it to the intended recipient, you are hereby notified
that any disclosure, copying, distribution or use of any of the
information contained in this transmission is STRICTLY PROHIBITED.  If
you have received this transmission in error, please immediately notify
me by reply e-mail and destroy the original transmission in its entirety
without saving it in any manner. 






**********************************************************************


------------------------------------------------------------------------
---
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

RE: Data Compression, (continued)
- - - RE: Data Compression Paul Farag (Aug 07)
- Re: Securing IIS Server Simon Gray (Aug 06)
- RE: Securing IIS Server MeaCulpa (Aug 06)
- RE: Securing IIS Server Robinson, Sonja (Aug 06)
- Re: Securing IIS Server salgak (Aug 06)
- Re: Securing IIS Server chris (Aug 06)
- RE: Securing IIS Server Jay Woody (Aug 06)
- RE: Securing IIS Server Justin Martin (Aug 06)
  - RE: Securing IIS Server Roland Venter (Aug 11)
    - RE: Securing IIS Server Marc Maiffret (Aug 11)
- RE: Securing IIS Server Chris Neppes (Aug 06)