General discussion

Locked

Virtual Server

By vana ·
I have my Nt server connecting in internet and my domain name is mycompany.com. I need to host my web page www.mycompany.com. I need to add every day information in this web, from my PC connecting to this server, i want this web to be more secure. Ihave installed IIS server. Cna any body tell me how can i make this using IIS and how can i secure my site?

This conversation is currently closed to new comments.

7 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Virtual Server

by Kal?l -- MCP+I, MCSE In reply to Virtual Server

First and foremost in the order of security, you should implement a packet filter, at the very least, or preferrably a firewall and proxy server between your web server and your internal network.

Disable the Guest account, and make sure you have renamed the Administrator account and the IIS 4.0 IUSR_<computername> internet guest account. Additionally, insure that you
configure group memberships and access permissions in a manner appropriate to your needs and your companys security policies.

As to securing your web site, you have a number of options:

You can install certificates and utilize SSL, but I'm guessing that to be overkill in your situation, as you'll need to install Certificate Server and SSL does slow things down considerably.

If you want a public web site, you should allow only anonymous access, disallow directory browsing and set the permissions appropriate to your particular scripts directory.

You can also up the ante by using basic authentication, where the user will be pr

Collapse -

Virtual Server

by vana In reply to Virtual Server

The question was auto-closed by TechRepublic

Collapse -

Virtual Server

by Kal?l -- MCP+I, MCSE In reply to Virtual Server

You can also up the ante by using basic authentication, where the user will be prompted for a username and password, or you can require Windows NT Challenge/Response to authenticate users. Be aware that there are limitations inherent in requiring user authentication; i.e., building user accounts and group memberships for authentication, browser selection by the user, etc.

IIS4 provides the ability to deny access to your web site based upon IP addresses or Domain names under the Directory Security tab of the default web site properties.

Launch the MMC and expand the tree in the node pane, right click the default web site and click on properties.

Don't forget that, if you are hosting FTP services, you will need to configure the security settings for your FTP site as well.

I recommend that you search Microsoft TechNet using the following keywords:
"IIS security"
"authentication and authorization"
"NTLM authentication"
"Secure Sockets Layer"
"digital certificate"
"event auditing"
"directo

Collapse -

Virtual Server

by vana In reply to Virtual Server

The question was auto-closed by TechRepublic

Collapse -

Virtual Server

by Kal?l -- MCP+I, MCSE In reply to Virtual Server

I recommend that you search Microsoft TechNet using the following keywords:
"IIS security"
"authentication and authorization"
"NTLM authentication"
"Secure Sockets Layer"
"digital certificate"
"event auditing"
"directory security"
"access permissions"
"firewall"and
"packet filtering"
also consult http://www.cert.org and
http://www.microsoft.com/ntserver/web
for more information specific to your particular situation.

Collapse -

Virtual Server

by vana In reply to Virtual Server

The question was auto-closed by TechRepublic

Collapse -

Virtual Server

by vana In reply to Virtual Server

This question was auto closed due to inactivity

Back to Windows Forum
7 total posts (Page 1 of 1)  

Operating Systems Forums