|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Maher Odeh (rax
netvision.net.il)Date: Mon Apr 22 2002 - 14:03:44 CDT
URLScan and eeye's Secure IIS both good once you get to configure them
right
there is alot to do under eeye's secure IIS ( for example rules to
prevent buffer overflows and disabling http methods etc ... )
same goes for URLscan there's a file URLscan.ini that needs to be
configured right ... so to answer your question they are both good
once you configure them , for other tools check the following :
www.sanctuminc.com Appshield
and
http://home.ie.cuhk.edu.hk/~msng0/twhttpd/
-----Original Message-----
From: Peter Louies [mailto:peterpixeldesign.be]
Sent: Saturday, April 20, 2002 3:44 AM
To: focus-mssecurityfocus.com
Subject: Securing IIS
Hi,
Is anyone recommending URLScan (from Microsoft) or Secure IIS (from
www.eeye.com)? Besides the price, which one should be the best or are
there
other tools like this that I should take a look at? I've downloaded them
both now (Secure IIS is installed on the server) but I want some experts
advice.
Thanks in advance, Peter.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]