By default, when you install and run Internet Information Services (IIS) on a Windows 2000 or Windows NT 4.0 computer, all of the available features and services of the Web server are started. Only those features and services required for the particular Web server should be enabled on the computer to ensure that the least amount of code is running on the server. In addition, all available IIS hotfixes should be installed on the server to patch any known vulnerabilities.
It is recommended that you download the IIS Lockdown tool and run it on all IIS computers. The tool works by turning off unnecessary features and services, thereby reducing the attack surface available to attackers. To provide defense in depth, URLScan, has been integrated into the IIS Lockdown tool.
The Microsoft Security Tool Kit
⌐ 2002 Microsoft Corporation. All rights reserved.