Basic IIS server configuration, patch, delete, and share

Is your website often hacked, or is it a hacker's "zombie" without looking at it "? For the Web Site Server <IIS Server>, if you do not set a secure IIS server, it is easy for hackers to "stare" and there is a risk of intrusion at any time. Do you think secure IIS server settings are complicated? It doesn't matter. We will be able to prevent attacks through the three methods set by the secure IIS server.

Basic IIS server configuration, patch, delete, and share

Webmasters usually use Windows servers, but we usually do not have dedicated technical staff to perform security settings through rented or hosted servers. Therefore, some common basic vulnerabilities still exist. In fact, you only need to install server patches to prevent most of the vulnerability intrusion attacks.

After the operating system is installed on the server and enabled, install various patches. The server patch installation method is similar to the XP system we use, so we will not go into details here.

After basic patch installation is completed, the IIS server is configured with accessible ports. Generally, the server only needs to open the necessary ports for providing Web services, other unnecessary ports can be disabled. However, do not disable the remote port 3389 of the management server.

Deleting the default share on the IIS server is also a required step. After sharing is enabled on the server, it is likely to be infiltrated by viruses or hackers to further escalate permissions or delete files. Therefore, we should try our best to disable file sharing. You can delete default shares in multiple ways. For example, you can disable the default share function of drive c by using the net share c $/delete command.