IIS4/Exchange Security question

General discussion

Creator

Topic
December 6, 2000 at 2:33 am #2092305

IIS4/Exchange Security question

Locked

by kcrosby1 · about 22 years, 10 months ago

I have a Exchange Mail server that uses OWA. IIS4 is installed on the same server. No choice about that. I understand that there is a new SP4 for Exchange 5.5 but what else might I do to security IIS4 from unwanted attacks????…. Probably basic IIS4 security things that I might need to turn off.

Any suggestions or pointed in the right directions would be appreciated,

Thanks, Kevin/Detroit

This conversation is currently closed to new comments.
Creator

Topic

All Comments

Author

Replies
- December 6, 2000 at 5:48 am #3878446
  
  IIS4/Exchange Security question
  
  by shanghai sam · about 22 years, 10 months ago
  
  In reply to IIS4/Exchange Security question
  
  In my experience, good security begins with 3 things:
  a. Remove/disable any unnecessary services.
  b. Install the latest security patches.
  C. Monitor the system regularly.
  
  Follow those general rules, and you will be in good shape.
  If you’re looking for a more detailed checklist, MS has one specifically for NT 4.0 running IIS available at: http://www.microsoft.com/technet/security/iischk.asp
  
  Also, you should signup for notification of alll security related hotfixes. You can do this here:
  http://www.microsoft.com/technet/security/notify.asp
- December 6, 2000 at 7:23 am #3878408
  
  IIS4/Exchange Security question
  
  by dao251 · about 22 years, 10 months ago
  
  In reply to IIS4/Exchange Security question
  
  I would review your reasons for using OWA. Do you have many notebookless travelling people? Why don’t you just use Outlook?
  
  In case your big concern is security — you better remove OWA and leave only known services allowed — SMTP and RPC (the two Excahge ports IS & DS).
  
  Elsewhere you really need to spend some time learning potential holes, cover them thouroughly and subscribe to MS Security bulletins and fix your IIS almost weekly.
  
  I believe noone can answer you in two-three words like “close that and that”.
  
  Dima
Author

Replies

Viewing 1 reply thread

Start a Discussion

Start New Discussion

This OneDrive Cloud Usage Policy, courtesy of TechRepublic Premium, defines the practices and behaviors organization representatives must follow when using any Microsoft OneDrive cloud file storage account to execute organization services, process organization data, or access or store organization information. From the policy: No organization representative should ever install a personal OneDrive account on any ...

One of the most common and most requested jobs listed by the video game industry is the job of video game designer. Depending on the company, the platform, the project and the company’s specific development process, the job of a video game designer can mean many different things. But at its base level, a game ...

For businesses, sustainability means maintaining the ecological, economic and holistic well-being of present and future clients. This entails taking into account the demands and necessities of individuals and society without jeopardizing the growth or wellness of the generations that follow. As an accountable business entity, this policy from TechRepublic Premium defines the company’s commitment to ...

Windows

General discussion