Source: logit.io
Hidden Vulnerabilities On Your IIS 8 ServersCategory: Security, Microsoft
March 6th 2015Security 2 min read Many companies have not made the move to Windows Server 2012 and 2012 R2, but IIS 8 and 8.5 are starting to see increasing adoption rates.
The first list of IIS 8.x Web Server vulnerabilities may not directly expose sensitive information, but could generate some red flags during a security audit or even allow attacks. They are: HTTP access is possible, which allows clear-text server connections that are not redirected to HTTPS.
This knowledge, coupled with employing a powerful logging and monitoring system and focusing on the application and server layer, will help improve your company's overall Web and Windows Server security.
The first list of IIS 8.x Web Server vulnerabilities may not directly expose sensitive information, but could generate some red flags during a security audit or even allow attacks. They are: HTTP access is possible, which allows clear-text server connections that are not redirected to HTTPS.
This knowledge, coupled with employing a powerful logging and monitoring system and focusing on the application and server layer, will help improve your company's overall Web and Windows Server security.
Related Articles
Community Partners
DevOps Careers