IIS Security – Past and Present

Posted: Apr 28, 2009  1 comments  

Average Rating

Tags
Application Pools
configuration
IIS
IIS 5.1
IIS 6
IIS 7
Installation
Logging
Performance
Security
URL Rewriter

Share this Post

This topic has been covered many times both by Microsoft and non-Microsoft employees. However, I’ve recently been asked what the main features of IIS 7 are and have seen a great deal of misinformation about IIS security on twitter, blog posts and forums.

I think, therefore, the issue deserves yet another look. In this post, I’m going to go over security in the past for IIS and then move on to talk about security features in IIS 7. These are not in any particular order. This post is not meant to diminish the many thoughtful works already created by others – both complimentary and critical. This is just meant to bring the subject back up for discussion again in hopes that you can be properly equipped with the decision making information you may need.

[continue to Tobin Titus' blog]