More Tips for Enhancing Web Server Security

Your Web server is only as secure as you make it. To improve your server’s security, read the additional tips provided here and apply the ones that make sense for your server environment.

Using Firewalls

Maintaining your Web server’s security is an ongoing task that requires continual vigilance. To shield your Web servers from attacks, you need a firewall, such as the Microsoft Internet Security and Acceleration (ISA) Server or a hardware-based firewall solution. When you install a firewall, close all ports that you aren’t using and open only ports that are needed.

The ports you’ll want to open depend on the types of IIS resources you’re using. FTP uses ports 20 and 21. SMTP uses port 25 and might require ...

Get Microsoft® IIS 6.0 Administrator's Pocket Consultant now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.