Internet Information Server Security Basics
Out of the box, Internet Information Server (IIS) 5.0 is not set up for maximum security but rather maximum usability. To start with, authoring is enabled. This is intentional, to work with Front Page Server Extensions, but causes problems with installing BizTalk Server 2002 as well as raising security risks if not needed, but left unattended. Maintaining the number of security bulletins and hot fixes needed for IIS could almost be a full-time job; however, tools are becoming available that help notify administrators that risks have been discovered and the steps to rectify them. IIS is necessary in the use of BizTalk because BizTalk does not contain its own Web server.
Disabling Authoring in IIS 5.0 ...
Get BizTalk™ Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
