Talk:Internet Information Services

From Wikipedia, the free encyclopedia

	This article is part of WikiProject Microsoft Windows, a WikiProject devoted to maintaining and improving the informative value and quality of Wikipedia's many Microsoft Windows articles.
B	This article has been rated as B-Class on the assessment scale.
Mid	This article has been rated as mid-importance on WikiProject Microsoft Windows's importance scale.

Contents 1 Price 2 Why: Microsoft Internet Information Services redirection 3 10 Connection Limit for 5.1 4 NPOV 5 Authentication Methods 6 Link Spam 7 Deep Links 8 External Links 9 Massive hack attack

[edit] Price

Price? ~~helix84 08:07, 2 May 2006 (UTC)

Part of newer NT-branch Windowses. :)

[edit] Why: Microsoft Internet Information Services redirection

Why was the page Microsoft Internet Information Services not redirected here before? I just want to know why.

[edit] 10 Connection Limit for 5.1

Are you sure this is still true? I work in very large tech company. IT said that it can support more then 10, more then 1000 etc.? "IIS 5.1 for Windows XP Professional. IIS 5.1 for Windows XP is a restricted version of IIS that supports only 10 simultaneous connections and a single web site". 64.102.254.33 16:49, 1 March 2007 (UTC)

In terms of IIS 5.0, 6.0, or 7.0, they can all support thousands of connections -- depending largely on hardware configuration. IIS 5.1 for 32-bit XP Pro only supports 10 simultaneous connections. See: Internet Information Services 5.1. This is more a function of the operating system than of the web-server, however. (see: Windows XP Professional Resource Kit). As a side-note, 64-bit XP Pro came with IIS version 6.0 instead of version 5.1. //BankingBum 18:06, 1 March 2007 (UTC) ^$$

[edit] NPOV

Is the article claiming that IIS is more secure because it has less reported vulnerabilities? Shouldn't it compare the ratios of exploited vulnerabilities, or attack success rate, or any other more meaningful metric? And in addition to that, the IIS server version 6.0 is compared against "Apache" without giving any version of Apache server, is that fair? What do you mean by "Apache had thirty three vulnerabilities"? 89.138.236.28 19:42, 27 June 2007 (UTC)

I think the section is well weighted. Previously, the article was weighted to say that IIS was insecure and did not include any comparison at all. Adding context to the article provides a more neutral point of view. The article does provide the Apache version and a link to the source of comparison (http://secunia.com/product/73/). There is a possibility of polishing that section a bit more, so feel free to jump in and add anything of encyclopedic value. //BankingBum Jun. 03:15:56, 30 June 2007 (UTC) ^$$

The reference link for the Apache report was broken, and it was about the Apache 2.0.x. I updated the article with the report of the latest version, 2.2.x, with a reference of the same web site. I didn't especify the version of Apache because this is not its article, but if someone disagree feel free do something about.

--Firmo 23:31, 6 August 2007 (UTC)

[edit] Authentication Methods

The article states that 5.0 and above use .NET authentication, but then goes on to say that 7.0 dropped support for MS Passport. Am I way off, I thought these were one in the same :) //

[edit] Link Spam

In an attempt to combat link spam, I've added the substituted template {{subst:NoMoreLinks}} to the external links section as per Wikipedia:Spam#Tagging_articles_prone_to_spam Christopher G Lewis (talk) 20:58, 15 February 2008 (UTC)

[edit] Deep Links

Gogo Dodo removed some deep links that were in the external links section. However, these were actual links to the MS TechNet doc section for IIS 7. What's the determination of a "Deep Link"? Christopher G Lewis (talk) 17:14, 14 March 2008 (UTC)

[edit] External Links

I'm proposing that we alter the External links to:

• Microsoft Internet Information Services product page
• IIS.net - Internet Information Services Community Portal
• IIS 7.0 Technical Reference
• IIS 7.0 Operations Reference
• IIS Security Guidance
• IIS Installation for XP

The XP install link may be, but Windows XP older technology, and IIS is generally thought of as a server product.

Finally, any thoughts on splitting links via version - IIS7, IIS6?

Christopher G Lewis (talk) 17:34, 14 March 2008 (UTC)

I do not think the installation guide is required. Finding it isn't that tough. --soum ^talk 18:02, 14 March 2008 (UTC)

[edit] Massive hack attack

I just read in a newspaper site in Spanish (oh wait, here is a English source http://blog.wired.com/monkeybites/2008/04/microsoft-datab.html) that there has been a massive hack attack against several web pages, all of them running on IIS. I thinki this is important and it should be added.--ometzit<col> (talk) 01:17, 29 April 2008 (UTC)

Its a generic SQL injection attack and any web server can be used as an attack vector. There is nothing special about these attacks, nor anything specific about IIS, in that they do not exploit any security holes in IIS, but rather in the web application itself - which is not a part of IIS. Neither IIS nor Microsoft SQL Server are to be blamed for that. --soum ^talk 01:28, 29 April 2008 (UTC)