Q

Disabling services to secure your Web and database servers

SearchWindowsSecurity.com expert Jonathan Hassell provides tips on locking down your Web and database servers.

What services should I turn off/disable on my Web server and database server? My Web server is a Windows 2000 Server running IIS and ColdFusion, I connect to it frequently via FTP to upload and download files and Terminal Server for remote administration. My DB server is also a Windows 2000 Server with MS SQL Server and Access databases and connects to my Web server via an internal network link and has no public outside access with the exception of FTP and Terminal Server access for me. Your recommendations are greatly appreciated.
Step one is to immediately upgrade to Windows Server 2003 on your public-facing web server. IIS on Windows 2000 Server (i.e., IIS version 5) is as secure as swiss cheese and you will be hacked sooner or later if you haven't already been. Once you've upgraded to Windows Server 2003, check out one of my SearchWindowsSecurity.com tips on locking down services on WS2003 machines.


Do you have comments on this Ask the Expert Q&A? Let us know.
This was first published in December 2005
This Content Component encountered an error

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchVirtualDesktop

SearchWindowsServer

SearchExchange

Close