MS IIS4.0 iusr_sysname account security

General discussion

Creator

Topic
August 2, 2001 at 4:17 pm #2344919

MS IIS4.0 iusr_sysname account security

Locked

by huawh · about 21 years, 10 months ago

Internet site set on the NT4.0/IIS4.0 platform.
We doubt that the site is attacked by hackers. Event log shows someone use the iusr_sysname account to log on and get into the iis process. The web service is stopped by him. How can we prevent this?

This conversation is currently closed to new comments.
Creator

Topic

All Comments

Author

Replies
- August 3, 2001 at 5:50 am #3720744
  
  MS IIS4.0 iusr_sysname account security
  
  by mebudman · about 21 years, 10 months ago
  
  In reply to MS IIS4.0 iusr_sysname account security
  
  Get the CODE RED patch to fix this,at
  
  http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-033.asp
  
  Check your IIS logs and search for the string “default.ida”. And yes you are being hacked.
  
  We saw this behavior and applied the patch and everything was fine after that.
  - August 5, 2001 at 4:05 pm #3722263
    
    MS IIS4.0 iusr_sysname account security
    
    by huawh · about 21 years, 10 months ago
    
    In reply to MS IIS4.0 iusr_sysname account security
    
    I downloaded a whole patch for iis4.0 from Microsoft.com, which includes the patch in answer1. Thanks.
- August 5, 2001 at 4:05 pm #3722262
  
  MS IIS4.0 iusr_sysname account security
  
  by huawh · about 21 years, 10 months ago
  
  In reply to MS IIS4.0 iusr_sysname account security
  
  This question was closed by the author
Author

Replies

Viewing 1 reply thread

Start or Search

Start New Discussion

PURPOSE New office launches and site relocations run the range from straightforward to overly complex. For intricate, sophisticated new office deployments and larger site moves, TechRepublic Premium’s Office relocation checklist can help plan, monitor and execute such projects. From the checklist: LIST REQUIRED OF EQUIPMENT AND SERVICES Begin by creating a simple list of required ...

PURPOSE Onboarding and offboarding employees requires careful attention. Otherwise, team members may receive insufficient permissions to perform their jobs or continue to have access long after their employment’s termination. Given the stakes, the problem is even worse when managing IT staff permissions, so it’s imperative that your company adopts a system to ensure consistency. Employees, ...

PURPOSE TechRepublic Premium presents 10 tips for the Firefox open-source browser. Even if you only follow some of these, you’ll find your browser experience to be much improved. From the article: 1. USE CAUTION WITH ADD-ONS AND THEMES This is one of the first tips I always offer. I’ve seen web browsers with so many ...

Security

General discussion