Internet -> Servers -> WWW -> Internet Information Services -> Security

Urlscan is a powerful security tool that works in conjunction with the IIS Lockdown Tool to give IIS Web site administrators the ability to turn off unneeded features and restrict the kind of HTTP requests that the server will process.

Software works by turning off unnecessary features thereby reducing attack surface available to attackers.

A blueprint for administrators and system architects to secure a Microsoft® Internet Information Server (IIS) 5.0 Web server.

Microsoft Consulting Services web server best practices.

Security advisory describing how the use of overly-long UNICODE representations for '/' and '\' can allow an attacker to run arbitrary commands on IIS v. 4 and 5 (Win 2000).

This article describes steps one may take to create a test certificate that allows one to enable SSL on IIS under Windows XP Professional.

Recommendations and best practices to secure a server on the Web running Microsoft Windows 2000 and Internet Information Services (IIS) 5.

Site Management | Clients | Directories | Monitoring | Servers | Website Promotion | Access | Reference | Network Management | Authoring | Organizations Open Source | PDA | X | History | Scenes and Worlds | Articles | WWW | Articles | Services | Voice | List Management | Derivatives | Consultants | Add-on Software | Firefox | Magazines and E-zines | Hotbar | News and Media | AntiSpam | Metasearch | Client Customization Kit | BEA WebLogic | Web-Based | Internet Explorer 5 | Security | Standards and Organizations | Mirroring | Monitoring | Netscape | Backup | Plug-ins | Audio | w3m | Personalization | Reference | Zope | Browsers | VRML | Technical Information | Mozilla | Solution Providers | WebSite Professional | VRML | FAQs, Help, and Tutorials | Books and Documentation | Microsoft Outlook | Webalizer | Web Browsers | Utilities | Security