Securing IIS 4.0 Resource Guide
Archived content. No warranty is made as to technical accuracy. Content may contain URLs that were valid when originally published, but now link to sites or pages that no longer exist. |
Secure the Windows NT 4.0 Server operating system, including installing all service packs and critical updates, as described in the Windows NT4 Security Resource Guide.
Install the Microsoft Index Server from the Windows NT 4.0 Server Option Pack to use the IIS Lockdown Tool.
Reinstall Windows NT 4.0 Service Pack 6a to update the files installed by the Windows NT 4.0 Option Pack.
Run the IIS Lockdown Tool.
Follow the Microsoft Internet Information Server 4 Security Checklist.
On This Page
Ongoing Security Maintenance
Additional Security Resources
Ongoing Security Maintenance
Without ongoing maintenance, your system can become vulnerable to new forms of attacks. Further, the security of your system will degrade over time due to human error of administrators managing the system. Follow these recommended steps on a regular basis:
Use the Baseline Security Analyzer regularly to scan and evaluate the security of your system.
Subscribe to the Microsoft Security Notification Service. This is a free email notification service that Microsoft uses to send information to subscribers about the security of Microsoft products.
As new security fixes become available, it is important to apply these new fixes. Microsoft has created the Qchain tool to chain hotfixes together in order for only one reboot to be required when installing several fixes.