IIS7 short Security Guide by Chris Weber

Topics

Tags

Favorite Links

Translate

Security Books

Archives

Recent entries...

Announcing SecTemplates.com release #4: Vulnerability Management Program Release Pack 1.0

Announcing SecTemplates.com release #3: Bug bounty program pack 1.0

Announcing SecTemplates.com release #2: External penetration testing program pack 1.0

Announcing SecTemplates.com and the incident response program pack 1.0

20 years of CGISecurity: What appsec looked like in the year 2000

My experience coleading purple team

oAuth nightmares talk

Extensive IOS hacking guide released by Security Innovation

Presentation: Problems you'll face when building a software security program

Google's intentions are good, but implementation leave MORE users vulnerable to hacking than before

Twitter

Sponsored Ads

Sponsored Ads

The Web Security Mailing List

« Appsec 2007 Event pictures | Main | Browser Security: I Want A Website Active Content Policy File Standard! »

IIS7 short Security Guide by Chris Weber

Chris Weber has a great writup of the new security changes in IIS7. Here are a few article section highlights

* Integrated request processing pipeline and WCF
* ASP.NET Integration
* Request filtering (replaces URLScan)
* IIS7 URL Authorization

He even has a nice checklist at the bottom.

Guide Link: http://chrisweber.wordpress.com/2007/09/19/iis7-security-guide-for-application-reviews/

Posted by Robert A. on 11/25/2007 in Articles , Research | Permalink | Reddit

Comments

You can follow this conversation by subscribing to the comment feed for this post.

All Comments are Moderated and will be delayed!

Post a comment