
	Home > Ask the Windows Security Experts > Hardening Windows Questions & Answers > Disabling services to secure your Web and database servers

Ask The Windows Security Expert: Questions & Answers

EMAIL THIS

Disabling services to secure your Web and database servers

EXPERT RESPONSE FROM: Jonathan Hassell

		Pose a Question

		Other Windows Security Categories

		Meet all Windows Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 14 December 2005
What services should I turn off/disable on my Web server and database server? My Web server is a Windows 2000 Server running IIS and ColdFusion, I connect to it frequently via FTP to upload and download files and Terminal Server for remote administration. My DB server is also a Windows 2000 Server with MS SQL Server and Access databases and connects to my Web server via an internal network link and has no public outside access with the exception of FTP and Terminal Server access for me. Your recommendations are greatly appreciated.

EXPERT RESPONSE
Step one is to immediately upgrade to Windows Server 2003 on your public-facing web server. IIS on Windows 2000 Server (i.e., IIS version 5) is as secure as swiss cheese and you will be hacked sooner or later if you haven't already been. Once you've upgraded to Windows Server 2003, check out one of my SearchWindowsSecurity.com tips on locking down services on WS2003 machines.

Do you have comments on this Ask the Expert Q&A? Let us know.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Hardening Windows
	How do I track file access in Windows folders?
	How to use Windows SBS to manage Internet security
	How to manage network access for a Windows server
	Set network user rights for Active Directory security
	How to grant Microsoft Windows network permissions
	Patch management and Windows Update aid in network setup
	Intrusion prevention for Windows network security
	How can I disable file transfer in MSN Messenger?
	How can I recover lost files?
	How do I bypass Windows Firewall to scan IP addresses?

Microsoft Windows Server 2003 Security

Harden your file servers with Windows wizard tool

Eliminate zero-day threats with virtual server technology

Proper server settings in Windows Server 2003

New R2 security features: Federation, not firewalls

Can I prevent network users from installing 3rd party software?

Checking access permissions with Server Share Check

Implement Group Policies on a mixed domain

Securing Remote Desktop

Fast Guide: Hardening Remote Desktop

VNC variant provides remote control boost

Microsoft Windows 2000 Server Security

Implement Group Policies on a mixed domain

VPN connection issues post Windows XP SP2 upgrade

Lock Windows 2000 Server down in nine different ways

The top five Windows security threats - A hacker's valentine

Securing legacy NT and Win2K servers

Should a server's name reveal its function?

Prevx

SequoiaView

Fresh Diagnose

Exchange Server Best Practices Analyzer

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

patch (SearchWindowsSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Reprints \| Site Map All Rights Reserved, Copyright 2004 - 2008, TechTarget \| Read our Privacy Policy