|
Home > Archive > IIS Server Security > January 2004 > Disabling IIS
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
| Amir M. 2004-01-24, 2:00 am |
| Hi,
For security reasons, we would like to disable the IIS on
all our Win2K Server machines that don't use it. How do
we disable/disconnect it? Could we remove it completely?
Does disabling or removing it cause any problems?
Thanks
| |
| Phil Frisbie, Jr. 2004-01-24, 2:00 am |
| Amir M. wrote:quote:
> Hi,
>
> For security reasons, we would like to disable the IIS on
> all our Win2K Server machines that don't use it. How do
> we disable/disconnect it?
You can block ports 80 and 443 in your advanced TCP/IP properties.
quote:
> Could we remove it completely?
Yes, just go into the Control Panel and run the Add/Remove Programs applet.
quote:
> Does disabling or removing it cause any problems?
It should not.
quote:
> Thanks
--
Phil Frisbie, Jr.
Hawk Software
http://www.hawksoft.com
| |
| Jeff Cochran 2004-01-24, 2:00 am |
| On Wed, 14 Jan 2004 13:00:00 -0800, "Amir M."
<anonymous@discussions.microsoft.com> wrote:
quote:
>For security reasons, we would like to disable the IIS on
>all our Win2K Server machines that don't use it. How do
>we disable/disconnect it? Could we remove it completely?
>Does disabling or removing it cause any problems?
If you're not using it, it shouldn't even be installed on those
systems.
Jeff
| |
| Paul Lynch 2004-01-24, 2:00 am |
| On Wed, 14 Jan 2004 13:00:00 -0800, "Amir M."
<anonymous@discussions.microsoft.com> wrote:
quote:
>Hi,
>
>For security reasons, we would like to disable the IIS on
>all our Win2K Server machines that don't use it. How do
>we disable/disconnect it? Could we remove it completely?
>Does disabling or removing it cause any problems?
>
>Thanks
The safets thing to do is remove those services/components that you
aren't using.
Anything superfluous services left lying around on a system could
potentially become an entry point for attackers if any new
vulnerabilities are found in those components and they are not
patched.
Read this KB article :
HOW TO: Disable or Remove Unnecessary IIS Services
http://support.microsoft.com/?id=321141
Regards,
Paul Lynch
MCSE
|
|
|
|
|