RE: SBS2003 with ISA 2000 and IIS lockdown

From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Date: Wed, 26 Jan 2005 14:23:41 -0800
IIS6 doesn't require URLScan, it's true.  It has its own version of
header-data filtering and validation.

"doesn't need to be locked down" is too vague; SBS is as locked down as
it can be for the vast majority of users, but you can always do more if
you're wiling to test and accept functionality limitations.

-------------------------------------------------------

   Jim Harrison

   MCP(NT4, W2K), A+, Network+, PCG

   http://isaserver.org/Jim_Harrison/
<http://isaserver.org/Jim_Harrison/> 

   http://isatools.org <http://isatools.org/> 

   Read the help / books / articles!

-------------------------------------------------------

 

________________________________

From: TRadtke@xxxxxxxxxxxx [mailto:TRadtke@xxxxxxxxxxxx] 
Sent: Wednesday, January 26, 2005 14:18
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: SBS2003 with ISA 2000 and IIS lockdown

 

http://www.ISAserver.org

Isn't IIS 6.0 suppose to come pre-lockdowned on SBS?  I asked my boss
since he's running it at home and he said he has not done it because
it's suppose to be secured out of the box?

 

Any input on that one Jim?

        -----Original Message-----
        From: Amy Babinchak [mailto:amy@xxxxxxxxxxxxxxxxxxxxxxxxxx] 
        Sent: Wednesday, January 26, 2005 4:11 PM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] RE: SBS2003 with ISA 2000 and IIS lockdown

        http://www.ISAserver.org

        There are always side effects but yes you can run it. I've
installed URL scan on my SBS server. The IIS lockdown will ask you if
you want to allow OWA; if you do be sure to choose the correct answer.

         

        Amy

         

         

         

        Harbor Computer Services

        Small Business Computer Specialists

         

        Office (248) 546-6056

        Mobile (248) 890-1794

        
________________________________


        From: William England [mailto:william@xxxxxxxxxxxxx] 
        Sent: Wednesday, January 26, 2005 3:49 PM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] SBS2003 with ISA 2000 and IIS lockdown

         

        http://www.ISAserver.org

        Hi

         

        Can I safely install URLSCAN and IISLockdown on my ISA2000 and
SBS2003 machine?

         

        Are there any side effects?

         

        William

        ------------------------------------------------------
        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        ------------------------------------------------------
        Other Internet Software Marketing Sites:
        World of Windows Networking: http://www.windowsnetworking.com
        Leading Network Software Directory: http://www.serverfiles.com
        No.1 Exchange Server Resource Site: http://www.msexchange.org
        Windows Security Resource Site: http://www.windowsecurity.com/
        Network Security Library: http://www.secinf.net/
        Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
        ------------------------------------------------------
        You are currently subscribed to this ISAserver.org Discussion
List as: amy@xxxxxxxxxxxxxxxxxxxxxxxxxx
        To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        Report abuse to listadmin@xxxxxxxxxxxxx 

        ------------------------------------------------------
        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        ------------------------------------------------------
        Other Internet Software Marketing Sites:
        World of Windows Networking: http://www.windowsnetworking.com
        Leading Network Software Directory: http://www.serverfiles.com
        No.1 Exchange Server Resource Site: http://www.msexchange.org
        Windows Security Resource Site: http://www.windowsecurity.com/
        Network Security Library: http://www.secinf.net/
        Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
        ------------------------------------------------------
        You are currently subscribed to this ISAserver.org Discussion
List as: tradtke@xxxxxxxxxxxx
        To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        Report abuse to listadmin@xxxxxxxxxxxxx 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 


All mail to and from this domain is GFI-scanned.
RE: SBS2003 with ISA 2000 and IIS lockdown

Other related posts:
