Safeguard your Web site and all its services with help from this detailed guide. After studying common Web site vulnerabilitifor both Internet and intranets--you'll find out how to plan and implement an effective and complete security framework that will prevent Denial of Service attacks, hacker intrusions, and malicious code breaches including Trojans, viruses, and worms. Learn to properly configure IIS security features and discover the ins-and-outs of auditing. This definitive guide will help you proactively manage your IIS Web environment to minimize future security risks. Focused, practical, and authoritative, this book shows you everything you need to know to secure IIS servers using real-life security challenges with proven solutions, security alerts, implementation techniques, and security check lists.
Part 1: Exposure, Risk, and prevention
Chapter 1: Web Security Threats
Chapter 2: Defacing, Damage, and Denial
Chapter 3: preparing and Hardening Your Web Server
Chapter 4: Accounts, Authorization, and Security Policy
Chapter 5: Security Auditing and Logging
Part 2: Administration
Chapter 6: Deployment Issues
Chapter 7: The Security Management Lifecycle
Chapter 8: Using Encrytion
Chapter 9: Third-Party Security Enhancements
Part 3: Advanced Topics
Chapter 10: Securing FTP, NNTP, and Other IIS Services
Chapter 11: Active Content Security
Chapter 12: Web Privacy