We know that the IIS server is now a widely used Web platform and it is relatively simple to build a Web site. However, the Web cannot run properly due to the IIS server intrusion or other reasons, which is very common. Therefore, IIS security has become a heart disease for many people.
The IIS server can be used independently as a Web server or together with compatible tools, it can be used to establish Internet business, access and operate data from different data sources, and create Web applications. These applications use server scripts and component code to complete some client-server functions.
Logs are an important part of the IIS security policy, ensuring log security can effectively improve the overall IIS security of the system.
Modifying the storage path of IIS logs ensures IIS security.
By default, IIS logs are stored in % WinDir % \ System32 \ LogFiles, which is clear to hackers. Therefore, it is best to modify the storage path.
In "Internet Service Manager", right-click the website directory and select "properties". On the "Web site" page in the "website directory properties" dialog box, when "Enable Logging" is selected, click the [attribute] button next to it. On the "general attributes" page, click the [browse] button or enter the log storage path in the input box.
Modify the Log Access permission and set that only the administrator can access the log.
Through some of the above IIS security settings, I believe your Web server will be much safer.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
