Internet Information Server (IIS) is a web server that is available automatically at the server edition of Windows installation with the Typical or Full option. Unfortunately, this default installation can lead to security holes in your system that have been fatal. How do I secure?
Web server is the core of a complex Internet organizations today. Every time a browser associated with a good web site on the internet or intranet, then it is connected by a web server, the server is listening on the network request and respond to client or sending a request with certain data.
IIS or also known as Internet Information Server is a web server installed by default when you install a server typically windows.
IIS installs itself to the primary partition automatically. This causes a security risk itself, because the Internet user can access the system partition every time they see a web page or using FTP to download a file.
Below is a list of default directories created by IIS:
-% Windir% \ Inetpub
-% Windir% \ System32 \ InetSrv
-% Windir% \ System32 \ InetSrv \ IisAdmin
-% Windir% \ Help \ IISHelp
IIS creates two user accounts during installation: IUSR_COMPUTERNAME and IWAM_COMPUTERNAME. IIS replaces the variable "computername" with the name of our computer.
For example, if we're installing IIS and the computer name of our "BAPUK", then the computer account is IUSR_BAPUK and IWAM_BAPUK. Best of these accounts can not be deleted, since IIS need. IUSR_COMPUTERNAME account is used to allow access without a name or "Anonymous" into the system, is the account used to run IWAM_COMPUTERNAME out-of-process from a web application.
Not every server requires IIS windows as webservernya. IIS itself should not be installed in the default state, if still requires IIS is a good idea to change the default partition is not the same as your system partition. To be what? yes it was for security.
If IIS has been installed you should uninstall and reinstall IIS on the partition again that we want.
How to change the partition that we wish were not there when the installation option? Indeed there is no way to change directories "program files" on the "Add / Remove programs wizard". To change it we must make an "answer file" and install it.
What is the answer file? How do I create one? "Answer File" or a file more or less the answer is a text file that is used to bypass / pass a normal installation procedure.
The table below is some IIS components needed to create "answer file":
--------------------
Syntax => Destination
--------------------
iis_common => Install "common files"
iis_doc => Install IIS documentation
iis_ftp => Install the FTP Service
Iis_htmla => Install "Web-based administration tools"
iis_inetmgr => Install "MMC-based administration tools"
iis_nntp_docs => Install documentation NNTP
iis_smtp => SMTP Service Install
iis_smtp_docs => Install SMTP documentation
iis_www => Install WWW Service
--------------------
To use the procedure please follow the following tutorial:
Kilk Start menu> Run
Type notepad in the dialogue box and click OK
Follow the following syntax tailored to the "answer file components table" at the top: [Components] iis_common = on
iis_ftp = on
iis_htmla = on
iis_www = on
[InternetServer]
PathFTPRoot = D: \ Inetpub \ Ftproot
PathWWWRoot = D: \ Inetpub \ wwwroot
(D: Showing the location of the desired partition for the location of IIS.)
Save this file in the directory C: \ with the name iis.txt or up to you.
After creating an answer file earlier, we are almost ready for installation. Why almost? yup .. because we need one more program that is used to menginstalisasi the "answer file" that we created with the name "iis.txt" earlier, ie "Sysocmgr.exe".
Then how installation? Easy. Go to "command prompt" and type:
sysocmgr / I:% windir% \ inf \ sysoc.inf / u: c: \ iis.txt
and follow all procedures.
Description:
This trick made the machine Windows XP & Windows Server 2003 and should be able to NT family.
[Components] => parameters to install the components in Windows.
[InternetServer] => parameter to change the default path to the FTP and WWW.
iis_htmla = on => "on" state condition ready to install, which is "web-based admin tool".
thank you have read my article.
I write for what I learned in:
- "Unattended.doc" from the Server CD, "support \ tools \ deploy.cab \ unattend.doc"
0 komentar:
Posting Komentar