IIS Security (Paperback)

Marty Jost, Michael Cobb

  • 出版商: McGraw-Hill Education
  • 出版日期: 2002-07-29
  • 定價: $1,980
  • 售價: 5.0$990
  • 語言: 英文
  • 頁數: 468
  • 裝訂: Paperback
  • ISBN: 0072224398
  • ISBN-13: 9780072224399
  • 相關分類: 資訊安全

立即出貨(限量) (庫存=3)




Protect your entire IIS Web environment from both insider and outsider security threats

Safeguard your Web site and all its services with help from this detailed guide. After studying common Web site vulnerabilities--for both Internet and intranets--youll find out how to plan and implement an effective and complete security framework that will prevent Denial of Service attacks, hacker intrusions, and malicious code breaches including Trojans, viruses, and worms. Learn to properly configure IIS security features and discover the ins and outs of auditing. This definitive guide will help you proactively manage your IIS Web environment to minimize future security risks. Focused, practical, and authoritative, this book shows you everything you need to secure IIS servers using real-life security challenges with proven solutions, security alerts, implementation techniques, and security check lists.

  • Resolve physical, environmental, network, and security policy issues and manage responsibilities of multi-level administration
  • Identify security vulnerabilities and learn the methods and tools that hackers use so you can better defend against them
  • Harden your server by removing unnecessary services, modifying default accounts, setting safe policies, and configuring secure access control
  • Set rules for authentication, IP filtering, network address translation, and domain restrictions
  • Use VPNs, SSL encryption, and public key cryptography (PKI) effectively
  • Monitor Web site activity through system logs and auditing policies to guard against potential attacks
  • Ensure safe use of scripts and Active Server Pages
  • Secure all IIS services including FTP, SMTP, and NNTP
  • Explore how the privacy factor affects your IIS security practices


   Part I: Exposure, Risk, and Prevention
    1: Web Security Threats
    2: Defacing, Damage, and Denial
    3: Preparing and Hardening Your Web Server
    4: Accounts, Authorization, and Security Policy
    5: Security Auditing and Logging

   Part II: Administration
    6: Deployment Issues
    7: The Security Management Lifecycle
    8: Using Encryption
    9: Third-Party Security Enhancements

   Part III: Advanced Topics
    10: Securing FTP, NNTP, and Other IIS Services
    11: Active Content Security
    12: Web Privacy

   Part IV: Appendixes
    A: Security Resources
    B: Glossary
    C: Reference Tables
    D: Microsoft IIS Authentication Methods