Because IIS users are also Windows 2000 users, and the permissions of the IIS Directory depend on the permission control of the Windows NTFS file system, you must create a secure and reliable Web server, to ensure both Windows 2000 and IIS security, the first step to protect IIS security is to ensure the security of the Windows 2000 operating system.
The IIS server can be used independently as a Web server or together with compatible tools, it can be used to establish Internet business, access and operate data from different data sources, and create Web applications. These applications use server scripts and component code to complete some client-server functions.
The IIS security configuration needs to delete unnecessary application mappings.
By default, many application mappings exist in ISS. Except for the ASP program ing, other files are rarely used on websites. Next, we will learn how to configure IIS security.
In "Internet Service Manager", right-click the website directory and select "properties". On the "home directory" page of the "website directory properties" dialog box, click the [configuration] button, the "application configuration" dialog box is displayed.
On the "Application ing" Page, delete useless program ing.
If you need this type of file, you must install the latest system patch, select the corresponding program ing, and then click the [edit] button.
In the "Add/edit application extension ing" dialog box, select the "check whether a file exists" option. In this way, when the customer requests such files, IIS will first check whether the files exist and then call the dynamic link library defined in the program ing for parsing.
Deleting unnecessary application mappings can effectively ensure IIS security. Therefore, do not ignore it.