http://www.microsoft.com/technet/treeview/default.asp?url=/technet/itsolutions/security/tools/iis5chk.asp Eric Dawson Alive New Media Looking for free beer!!!! easy contracts!!!! and sleep!!!! Work hard, play harder! "You could try another approach." My token Dave Watts quote (just trying to fit in. :) From: "Christopher Olive, CIO" <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED] To: CF-Talk <[EMAIL PROTECTED]> Subject: RE: CF trojen? BackdoorJY.sv Date: Thu, 19 Jul 2001 09:18:55 -0400 actually, microsoft has a good article on hardening IIS5. don't have the link right now, but go to microsoft.com and search for "securing IIS5". chris olive, cio cresco technologies [EMAIL PROTECTED] http://www.crescotech.com -----Original Message----- From: Surma [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 AM To: CF-Talk Subject: Re: CF trojen? BackdoorJY.sv >Rather than relying on Microsoft > patches, you'll get better mileage out of properly configuring your servers > up front. Here's a little secret of mine. I don't bother installing most of > the IIS patches when they come out. I don't have to, because they patch > things that I've already disabled or removed. I can wait until everyone else > has regression-tested the patch on their production web servers. Can you throw us bone, and point us to some information on how to strip down a CF, IIS Server? Lee Surma [EMAIL PROTECTED] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists