Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Should webservers, eg. IIS 6 have anti--virus installed on them?

from [Floyd Russell] Network Security [Permanent Link]
Subject: RE: Should webservers, eg. IIS 6 have anti--virus installed on them?
Date: Mon, 18 Jul 2005 14:13:23 -0500 
I've held a contentious view on this in the past. Traditionally speaking,
viruses are only spread through user action, (Attachment, execution of
untrusted file, etc). A webserver should never be used for random internet
browsing, checking email, running untrusted software, etc. Also, you have to
consider the performance impact. If this server is running an intensive site
can you afford the CPU overhead of an active anti-virus scanner? Is it going
to lock files that need to be written to by the site?

If the machine is just a webserver then patch, firewall, use as
well-designed as possible code, and limit access & lock down as much as
possible. It seems to be that these five things would be enough to prevent
the viruses from taking control of your machine.

Remember, this is just viruses. Exploits are a completely different matter.

fr

-----Original Message-----
From: Shyaam [mailto:shyaam@gmail.com]
Sent: Monday, July 18, 2005 10:20 AM
To: ssgill@gilltechnologies.com
Cc: focus-ms@securityfocus.com
Subject: Re: Should webservers, eg. IIS 6 have anti--virus installed on
them?


According to my level of knowledge(which is very minimal, in this
especially), I would say that a web server should be patched well
first. the anti-virus is a secondary issue. Ofcourse, you need an
antivirus too, but there should always be good patches implemented
which checks for the latest signatures.
--Shyaam

On 7/17/05, Sarbjit Singh Gill <ssgill@gilltechnologies.com> wrote:


Greetings

Should IIS have anti-virus installed on them. I know I would do it for a
fileserver but for IIS, I rather lock  it down.

Thanks.
/Gill


--------------------------------------------------------------------------

-

--------------------------------------------------------------------------

-






--
Thank you in advance for your time and consideration.
Yours Sincerely,
R.S.Shyaam Sundhar

---------------------------------------------------------------------------
---------------------------------------------------------------------------


---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Should webservers, eg. IIS 6 have anti--virus installed on them?, Jeff
Next by Date:  RE: Should webservers, eg. IIS 6 have anti--virus installed on them?, Brady McClenon
Previous by Thread:  RE: Should webservers, eg. IIS 6 have anti--virus installed on them?, Jeff
Next by Thread:  X-IMail-SPAM-Connection RE: Should webservers, eg. IIS 6 have anti--virus installed on them?, Jacob Marullo
Indexes:  [Date] [Thread] [Top] [All Lists]