Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: IIS6 on W2k3 DCs

from [Devin Ganger] Network Security [Permanent Link]
Subject: RE: IIS6 on W2k3 DCs
Date: Fri, 14 Jan 2005 16:40:46 -0800 
Susan Bradley wrote:


But Small Business Server 2003 runs with IIS on our domain controller.
Where's MY security risks these days?  Not my server..nope......it's
my desktops where my security risks lie.


Anything you expose to the Internet is a security risk, especially when
it's just sitting there listening.


Port 80 is closed on my server but IIS is still on there.


Which is why IIS is a lesser risk *for you*.


Am "I" freaking out over IIS on my domain controller?  Nope.
Not at this moment.

 
As is good and proper, but when you're specifically being asked to put a
live (publicly accessible) webserver on a DC, that's different. To do so
is idiocy, not to put too fine a point on it, even if you're using SBS.
While SBS has a lot of value, the single-server configuration breaks a
lot of best practices in the name of financial convenience. (Exchange on
a DC, forex -- supported but not recommended.)

-- 
Devin L. Ganger             Email: deving@3sharp.com
3Sharp LLC                  Phone: 425.882.1032 x 109
15311 NE 90th Street        Cell: 425.239.2575
Redmond, WA  98052          Fax: 425.702.8455

---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: IIS6 on W2k3 DCs, Eric McCarty
Next by Date:  RE: IIS6 on W2k3 DCs, Laura A. Robinson
Previous by Thread:  RE: IIS6 on W2k3 DCs, Eric McCarty
Next by Thread:  RE: IIS6 on W2k3 DCs, Jim Harrison (ISA)
Indexes:  [Date] [Thread] [Top] [All Lists]