This chapter has covered a lot of ground. We started by covering the main features in Windows Server 2003 used for sharing and protecting data. To summarize, we looked at the following main points relating to files and folder:
That was followed by a discussion of the new features in IIS 6.0. It is important to remember that, unlike previous versions of Windows, in Windows Server 2003 IIS is not installed by default. In addition, when IIS 6.0 is installed, it is installed in "lockdown mode." In this mode, only static pages can be served, and the support for dynamic content such as ASP or CGI has to be manually configured. These default settings present a far smaller "attack surface" for viruses and hackers. Managing security for IIS 6.0 is an important topic, especially in light of all the attention that IIS has received as a favorite target for hackers. It is important to understand that the best way to secure IIS is to enable only the minimal features required to support the applications being run on IIS. Also, you should never grant more authority to any users than they can ever possibly require. Key Terms
|