IIS Server is short for Internet Information Server. It is a WEB Server promoted by Microsoft. Currently, the commonly used version is IIS 6 in Windows2003 or IIS 5 earlier.
IIS Server and Window NT Server are fully integrated. Therefore, you can use the built-in security features of Windows NT Server and NTFS (NT File System, NT File System, build powerful, flexible, and secure Internet and Intranet sites.
Security issues are always the top priority for Microsoft to be attacked. In fact, it is not Microsoft's indifference to security. It is because the giant warship of Microsoft is too large, and it is inevitable that it will lose one secret, fortunately, Microsoft actively responds to opinions and suggestions on every security aspect.
IIS server security issues mainly focus on effective management of. NET programs and permission management issues. IIS 7 enhances the security of the IIS server.
In the new version, IIS server and ASP. NET Management settings are integrated into a single management tool. In this way, you can view and set authentication and authorization rules in one place, instead of using different dialogs as before. This provides managers with a more consistent and clear user interface and a unified management experience on the web platform.
In IIS Server 7 ,.. NET applications run directly through the IIS Code instead of sending them to the Internet Server API extension. This reduces the possible risks and improves the performance. At the same time, the management tool has built-in ASP. the member and role management system of NET 3.0 provides support for the management interface.
This means that you can create and manage roles and users in the management tools, and assign roles to users.
We will explain how to enhance the security of IIS Server 7.