Firewall Wizards mailing list archives
iis 6.0 and sharepoint portal security checklist
From: "Hilal Hussein" <hilalma () hotmail com>
Date: Wed, 08 Dec 2004 06:02:54 +0000
Dear Gents,I have an assignment to do a security checklist for system and application compliances. As for the system, i am using a security template and finding the non-compliances. but for the application, it is quite difficult as we have different applications that even need a software to report the non-compliances with our security policy, or a security checklist.
For example, bellow is a part of a security checklist for the IIS 5.0: ID Security check Item Compliances status 1 Install IIS on stand-alone server (member server)2 Install only OS and required IIS 5.0 components (no applications or development tools) 3 Create a new inetpub root directory on separate drive or partition from OS and other programs. Use a name other than Inetpub to help counter potential attacks.
4 Remove all protocol stacks except TCP/IP 5 Disable all non-required services6 IUSR-Computername account must be disabled. However if exception granted the following privileges must be set on the account:
o Select User cannot change password o Select password never expires o Remove log on as a batch service o Grant access this computer from the network7 Disable the IUSR-Computername account, if not otherwise approved by ISSD. Using anonymous access is subject to security approval
so, here come the question:1 - is there any similar security checklist for the IIS 6.0 (knowing that it is by default more secure than the iis 5.0)
2 - any similar security checlist for the sharepoint portal? thanks in advanced for your support, regards, Hilal Hilal Hussein Senior Security Officer ISSD NCB - Jeddah - KSA +966507169910 _________________________________________________________________FREE pop-up blocking with the new MSN Toolbar - get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
_______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- iis 6.0 and sharepoint portal security checklist Hilal Hussein (Dec 11)