Security School

Web Security School Lesson 1

In Lesson 1 of Web Security School, our guest instructor, Michael Cobb, teaches you how to plan and perform a secure installation of your Web server's operating system and services. He also explains detailed hardening procedures, and how to secure other network services such as FTP and SMTP, as well as setting up access control and security policies. Finally, you will learn how to set up secure remote management and recovery procedures.

   Webcast: Insider's guide to Web server security
   Technical paper: Why your Web site is at risk
   Quiz: Lesson 1
   About the Instructor

Web Security School Home

Lesson 1

Lesson 2

Lesson 3


Webcast: Insider's guide to Web server security

Guest instructor Michael Cobb lays the groundwork for locking down a Web server before it goes live. This tutorial begins with a look at Web server hardening procedures, followed by access control and security policies. Mike also explains how to secure other network services such as SMTP and FTP, and the best way to prepare recovery plans and backup procedures. You will come away from this webcast with a checklist to ensure your IIS Web server is secure and ready for the online world. This webcast is available on-demand. Through our agreement with (ISC)², all CISSP and SSCP participants who attend this webcast can earn one CPE credit.

Webcast companion materials:

  • Essential vs. nonessential services   (Download PDF)
  • Windows IIS server hardening checklist   (Download PDF)
  • IIS SMTP mail relay service and Microsoft Exchange Server   (Download PDF)
  • BEGIN THE WEBCAST   (Download PDF)
    Find out how you can earn CPE credits

    Now available as an MP3: Insider's guide to Web server security


    Technical paper: Know your enemy: Why your Web site is at risk

    Knowing the enemy is the first step in building a defense. Get a true sense of the scope of the threats and risks to your Web site, and who is behind them.

    Technical paper companion:

  • Checklist of known IIS vulnerabilities   (Download PDF)


    Quiz: Lesson 1

    The final part of this lesson is the quiz to assess your knowledge of Web server security. In order to successfully pass the quiz, you need to attend the webcast and read the technical paper.

    TAKE THE QUIZ   (Download PDF)

      About the Instructor

    Michael Cobb, CISSP-ISSAP, is a renowned security author with more than 10 years experience in the IT industry and another 16 years experience in finance. He is the founder and managing director of Cobweb Applications Ltd., a consultancy that offers IT training and support in data security and analysis. He co-authored the book IIS Security and has written numerous technical articles for leading IT publications. Cobb is also a Microsoft Certified Database Administrator and a Microsoft Certified Professional.


    This was first published in June 2005

    There are Comments. Add yours.

    TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

    REGISTER or login:

    Forgot Password?
    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
    Sort by: OldestNewest

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to: