Many people have used IIS servers. However, many people have been attacked, here we will explain some small experiences we have summarized over the years to help you better use IIS servers. Next, let's explain how to prevent the attacks.
Protecting IIS server log security
Logs are an important part of the system security policy, ensuring the security of logs can effectively improve the overall security of the system.
● Modify the log storage path of the IIS server
By default, IIS server logs are stored in % Windir % System32LogFiles, which is clear to hackers. Therefore, it is best to modify the storage path.
In "Internet Service Manager", right-click the website directory and select "properties". On the "Web site" page in the "website directory properties" dialog box, when "Enable Logging" is selected, click the [attribute] button next to it. On the "general attributes" page, click the [browse] button or enter the log storage path in the input box.
● Modify the Log Access permission and set that only the administrator can access the log.
If you want to use the virtual host service, select a good virtual host management system, such as qingqing virtual host management system and other professional management software in China ), you can easily set the Site Management permissions of the IIS server and monitor the sites of each IIS server in real time. With these security settings, we believe your Web server security will be greatly improved.