Re: is IIS 5.0 safe?
From: Paul Lynch (paul.lynch_at_nospam.com)
Date: 04/01/04
- Next message: Egbert Nierop \(MVP for IIS\): "Re: Session inconsistencies IIS6"
- Previous message: Paul Lynch: "Re: SSL, public vs. private IP's and host headers"
- In reply to: David Wang [Msft]: "Re: is IIS 5.0 safe?"
- Next in thread: Jeff Cochran: "Re: is IIS 5.0 safe?"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 01 Apr 2004 09:43:44 +0100
On Wed, 31 Mar 2004 23:55:57 -0800, "David Wang [Msft]"
<someone@online.microsoft.com> wrote:
>Several options.
>
>IIS 5.1 comes with XP Pro and only supports one website and 10 connections.
>1. It is possible to set up IP Restriction on the website such that it will
>only process localhost/127.0.0.1 requests (I don't remember if this feature
>is enabled in the UI or not).
>2. You can also setup the Microsoft Loopback Adapter and configure the
>website to only listen on that network interface, so it then becomes
>impossible for IIS to even respond to non local requests while your own PC
>is perfectly able to access IIS.
>3. Run the software firewall and make sure that port 80 is not open.
>
>Finally, realize that when you run server software, you become responsible
>for configuring/securing it. Security is best achieved through knowledge
>and configuration.
David,
You can't set IP restrictions on the 'desktop' versions of IIS.
Items in the ISM Are Missing or Appear Dimmed on Windows
http://support.microsoft.com/?id=263857
Regards,
Paul Lynch
MCSE
- Next message: Egbert Nierop \(MVP for IIS\): "Re: Session inconsistencies IIS6"
- Previous message: Paul Lynch: "Re: SSL, public vs. private IP's and host headers"
- In reply to: David Wang [Msft]: "Re: is IIS 5.0 safe?"
- Next in thread: Jeff Cochran: "Re: is IIS 5.0 safe?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
