Tips on IIS Security Settings

We know that for Web website servers, IIS security settings are very important because they are vulnerable to hacker attacks and may be at any time attacked. Here we will introduce some tips on IIS security settings to prevent attacks.

Install patches to delete and share IIS Security Settings

Webmasters usually use Windows servers, but we usually do not have dedicated technical staff to set IIS security through rented or hosted servers. Therefore, some common basic vulnerabilities still exist. In fact, you only need to install server patches to prevent most of the vulnerability intrusion attacks.

After the operating system is installed on the server and enabled, install various patches. This makes sense for IIS security. The server patch installation method is similar to the XP system we use, so we will not go into details here.

After basic patch installation is completed, it is more important for IIS security to set accessible ports. Generally, the server only needs to open the necessary ports for providing Web services, other unnecessary ports can be disabled. However, do not disable the remote port 3389 of the management server.

For IIS security settings, deleting the default share is also a required step. After the server enables the share, it is likely to be infiltrated by viruses or hackers to further escalate permissions or delete files, therefore, we should close file sharing whenever possible. You can delete default shares in multiple ways. For example, you can disable the default share function of drive c by using the net share c $/delete command.

There are still many advantages over IIS security, which we will introduce here.