ISSC363 Week5 Forum
ISSC363 Week5 Forum
Popular in Course
verified elite notetaker
Popular in Department
This 1 page Study Guide was uploaded by kimwood Notetaker on Monday November 9, 2015. The Study Guide belongs to a course at a university taught by a professor in Fall. Since its upload, it has received 19 views.
Reviews for ISSC363 Week5 Forum
Report this Material
What is Karma?
Karma is the currency of StudySoup.
You can buy or earn more Karma at anytime and redeem it for class notes, study guides, flashcards, and more!
Date Created: 11/09/15
Apache and Microsoft IIS are definitely two of the most popular web servers out there and used by many people throughout the business and commercial industry The best ways to mitigate vulnerabilities on these platforms are really mostly just common sense in the Information Technology industry yet people still are not using the methods There are applications and software out there that can assist making them secure however if administrators just take the time to do what is required most vulnerabilities can be mitigated Keeping both Microsoft IIS and Apache updated is a key component in the security of the platforms Microsoft IIS runs on Windows Server so it is especially key to update both the webserver and the operating system that it is running on Apache is normally run on the Linux platform which doesn t mean that you can set it and forget it New vulnerabilities are found every day which also makes updating the Apache Server extremely important Both Microsoft IIS and Apache run permission off of groups Microsoft has a tool to help the administrators lock permissions down called the Security configuration and management tool Not only does it help with the Security of the platform but it also compares the current system settings with the recommended security settings that Microsoft recommends With Apache if the same user and group are used to manage MySQL and the Apache Server the administrative team could be opening themselves up to a huge vulnerability Using the proper user group s is extremely important the best scenario is to let the apache server run off of the apache user group and change it in the httpd file Finally where Microsoft IIS has a tool that turns off unwanted services Apache does not Rule of thumb if you are not using it turn it off that s one less thing that you as an administrator will have to worry about Taking these steps are just a few of the best practices and lessons that I have learned over the years of using both Microsoft IIS and Apache Webservers References Cited IIS 7 Operations Guide nd Retrieved November 6 2014 Shrivastava T 2013 October 15 13 Apache Web Server Security and Hardening Tips Retrieved November 6 2014
Are you sure you want to buy this material for
You're already Subscribed!
Looks like you've already subscribed to StudySoup, you won't need to purchase another subscription to get this material. To access this material simply click 'View Full Document'