IIS6 doesn't require URLScan, it's true. It has its own version of header-data filtering and validation. "doesn't need to be locked down" is too vague; SBS is as locked down as it can be for the vast majority of users, but you can always do more if you're wiling to test and accept functionality limitations. ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ <http://isaserver.org/Jim_Harrison/> http://isatools.org <http://isatools.org/> Read the help / books / articles! ------------------------------------------------------- ________________________________ From: TRadtke@xxxxxxxxxxxx [mailto:TRadtke@xxxxxxxxxxxx] Sent: Wednesday, January 26, 2005 14:18 To: [ISAserver.org Discussion List] Subject: [isalist] RE: SBS2003 with ISA 2000 and IIS lockdown http://www.ISAserver.org Isn't IIS 6.0 suppose to come pre-lockdowned on SBS? I asked my boss since he's running it at home and he said he has not done it because it's suppose to be secured out of the box? Any input on that one Jim? -----Original Message----- From: Amy Babinchak [mailto:amy@xxxxxxxxxxxxxxxxxxxxxxxxxx] Sent: Wednesday, January 26, 2005 4:11 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: SBS2003 with ISA 2000 and IIS lockdown http://www.ISAserver.org There are always side effects but yes you can run it. I've installed URL scan on my SBS server. The IIS lockdown will ask you if you want to allow OWA; if you do be sure to choose the correct answer. Amy Harbor Computer Services Small Business Computer Specialists Office (248) 546-6056 Mobile (248) 890-1794 ________________________________ From: William England [mailto:william@xxxxxxxxxxxxx] Sent: Wednesday, January 26, 2005 3:49 PM To: [ISAserver.org Discussion List] Subject: [isalist] SBS2003 with ISA 2000 and IIS lockdown http://www.ISAserver.org Hi Can I safely install URLSCAN and IISLockdown on my ISA2000 and SBS2003 machine? Are there any side effects? William ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: amy@xxxxxxxxxxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tradtke@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned.