Internet
Internet Information Server (IIS) is a web server that is available automatically when the server edition of Windows installation with the option Typical or Full. Unfortunately, this default installation can lead to security holes in your system which is fatal. How do I secure it?
Web servers are the core of a complex organization the internet today. Every time a browser associated with a good web site on the Internet or an intranet, then it connect to the web server, the server is listening to requests on the network and answer to the client or the sender of the request with a specific data.
Known as IIS or Internet Information Server is a web server installed by default when we typically install a windows server.
IIS installs itself automatically to the primary partition. This causes a security risk alone, because Internet users can access the system partition every time they see a web page or using FTP to download a file.
Below is a list of default directories created by IIS: -% Windir% \ Inetpub -% Windir% \ System32 \ InetSrv -% Windir% \ System32 \ InetSrv \ IisAdmin -% Windir% \ Help \ IISHelp
IIS creates two user accounts during installation: IUSR_COMPUTERNAME and IWAM_COMPUTERNAME. IIS replaces the variable "computername" with the name of our computer. For example, if we're installing IIS and our computer name "BAPUK", then the computer account is IUSR_BAPUK and IWAM_BAPUK. Best of the account can not be deleted, since IIS need it. IUSR_COMPUTERNAME account used to allow access without a name or "Anonymous" into the system, being IWAM_COMPUTERNAME account used to run out-of-process from a web application.
Not every Windows server requires IIS as webservernya. IIS itself should not be installed in the default state, if still requires IIS is a good idea to change the default partition is not the same for your system partition. For what? yes it was for security.
If IIS is installed you should uninstall and reinstall IIS again on the partition we want.
How to convert it to a partition that we want is not there an option when the installation? Indeed, there is no way to change directories "program files" on the "Add / Remove programs wizard." To change it we must make an "answer file" and install it.
What is answer file? How do I create one? "Answer File" or more or less the answer file is a text file that is used to bypass / pass through a normal installation procedure.
The table below is some IIS components are required in making the "answer file":
-------------------------------------------------- ---------
Syntax => Objectives
-------------------------------------------------- ---------
iis_common => Install "common files"
iis_doc => Install IIS documentation
iis_ftp => Install an FTP Service
Iis_htmla => Install "Web-based administration tools"
iis_inetmgr => Install "MMC-based administration tools"
iis_nntp_docs => Install documentation NNTP
iis_smtp => SMTP Service Install
iis_smtp_docs => Install SMTP documentation
iis_www => Install WWW Service
-------------------------------------------------- ---------
To use the procedure please follow the following tutorial:
Kilk Start menu> Run
Type notepad in the dialogue box and click OK
Follow the following syntax tailored to the "table component answer file" above: [Components] iis_common = on iis_ftp = on iis_htmla = on iis_www = on [InternetServer] PathFTPRoot = D: \ Inetpub \ Ftproot PathWWWRoot = D: \ Inetpub \ wwwroot ( D: Showing the location of the desired partition for the location of IIS.)
Save the file was in the directory C: \ with the name iis.txt or up to you.
After creating an answer file before, means we are almost ready to do the installation. Why almost? yup .. because we need one more program that is used to menginstalisasi of the "answer file" that we created with the name "iis.txt" before, namely "Sysocmgr.exe".
Then how do the installation? Easy. Go to "command prompt" then type: sysocmgr / I:% windir% \ inf \ sysoc.inf / u: c: \ iis.txt and just follow the procedure.
Description: This trick is done on the machine Windows XP & Windows Server 2003 and should be able to NT family. [Components] => parameter to install the components in Windows. [InternetServer] => parameter to change the default path to the FTP and WWW. iis_htmla = on => "on" state condition ready to install, which is "web-based admin tool."
Reference: - "Unattended.doc" from the Server CD, "support \ tools \ deploy.cab \ unattend.doc" - "www.syngress.com"
By: kodokhunt (hendraw4n AT yahoo.com)
Web servers are the core of a complex organization the internet today. Every time a browser associated with a good web site on the Internet or an intranet, then it connect to the web server, the server is listening to requests on the network and answer to the client or the sender of the request with a specific data.
Known as IIS or Internet Information Server is a web server installed by default when we typically install a windows server.
IIS installs itself automatically to the primary partition. This causes a security risk alone, because Internet users can access the system partition every time they see a web page or using FTP to download a file.
Below is a list of default directories created by IIS: -% Windir% \ Inetpub -% Windir% \ System32 \ InetSrv -% Windir% \ System32 \ InetSrv \ IisAdmin -% Windir% \ Help \ IISHelp
IIS creates two user accounts during installation: IUSR_COMPUTERNAME and IWAM_COMPUTERNAME. IIS replaces the variable "computername" with the name of our computer. For example, if we're installing IIS and our computer name "BAPUK", then the computer account is IUSR_BAPUK and IWAM_BAPUK. Best of the account can not be deleted, since IIS need it. IUSR_COMPUTERNAME account used to allow access without a name or "Anonymous" into the system, being IWAM_COMPUTERNAME account used to run out-of-process from a web application.
Not every Windows server requires IIS as webservernya. IIS itself should not be installed in the default state, if still requires IIS is a good idea to change the default partition is not the same for your system partition. For what? yes it was for security.
If IIS is installed you should uninstall and reinstall IIS again on the partition we want.
How to convert it to a partition that we want is not there an option when the installation? Indeed, there is no way to change directories "program files" on the "Add / Remove programs wizard." To change it we must make an "answer file" and install it.
What is answer file? How do I create one? "Answer File" or more or less the answer file is a text file that is used to bypass / pass through a normal installation procedure.
The table below is some IIS components are required in making the "answer file":
-------------------------------------------------- ---------
Syntax => Objectives
-------------------------------------------------- ---------
iis_common => Install "common files"
iis_doc => Install IIS documentation
iis_ftp => Install an FTP Service
Iis_htmla => Install "Web-based administration tools"
iis_inetmgr => Install "MMC-based administration tools"
iis_nntp_docs => Install documentation NNTP
iis_smtp => SMTP Service Install
iis_smtp_docs => Install SMTP documentation
iis_www => Install WWW Service
-------------------------------------------------- ---------
To use the procedure please follow the following tutorial:
Kilk Start menu> Run
Type notepad in the dialogue box and click OK
Follow the following syntax tailored to the "table component answer file" above: [Components] iis_common = on iis_ftp = on iis_htmla = on iis_www = on [InternetServer] PathFTPRoot = D: \ Inetpub \ Ftproot PathWWWRoot = D: \ Inetpub \ wwwroot ( D: Showing the location of the desired partition for the location of IIS.)
Save the file was in the directory C: \ with the name iis.txt or up to you.
After creating an answer file before, means we are almost ready to do the installation. Why almost? yup .. because we need one more program that is used to menginstalisasi of the "answer file" that we created with the name "iis.txt" before, namely "Sysocmgr.exe".
Then how do the installation? Easy. Go to "command prompt" then type: sysocmgr / I:% windir% \ inf \ sysoc.inf / u: c: \ iis.txt and just follow the procedure.
Description: This trick is done on the machine Windows XP & Windows Server 2003 and should be able to NT family. [Components] => parameter to install the components in Windows. [InternetServer] => parameter to change the default path to the FTP and WWW. iis_htmla = on => "on" state condition ready to install, which is "web-based admin tool."
Reference: - "Unattended.doc" from the Server CD, "support \ tools \ deploy.cab \ unattend.doc" - "www.syngress.com"
By: kodokhunt (hendraw4n AT yahoo.com)
Komentar
Posting Komentar