That caused the entire server system to crash is not alarmist! Therefore, it is necessary to take reasonable and comprehensive safety management.
Let's start with the security of IIS.
IIS, starting with the NT system kernel, has become an important information release carrier, but its unavoidable vulnerabilities are also mentioned in a number of sources. IIS is used as an FTP server erection, mainly its easy to understand the settings to win the favor of many people; Therefore, to use IIS, we have to consider the following aspects of their security issues:
1. Install system patches. Microsoft's website often publishes the latest system security patches on its official web site, and you can update them with Windows Update programs that come with your system.
2. The settings for the FTP directory. It is more common to assign the home directory to a logical disk, set different access rights for each of the small directories, and turn off some unwanted services, which can be used as a first level protection against bad people accessing the system disk with an IIS overflow vulnerability.
3. Try not to use the 21 default port number and enable logging so that the FTP service checks when an exception occurs.
Another FTP erection software Serv_u.
The software interface is shown in the following illustration. Feel that the software in the security of the better, its settings are not easy to make mistakes, the author used a period of time to feel faster than IIS is much faster. Even so, be aware of its proper configuration:
1. For server password settings in the domain.
Serv_u provides three types of secure passwords: rule passwords, Otps/key MD4, and Otps/key MD5, and it goes without saying that rule passwords are the least secure. In general, we set up an account with administrative rights, then under the General tab open the "Password type" drop-down box, from which the two types are relatively more secure.
Current 1/2 page
12 Next read the full text