GIAC
GCIH · Question #47
GCIH Question #47: Real Exam Question with Answer & Explanation
The correct answer is A: Customize IIS 6.0 to display a legal warning page on the generation of the 404.2 and. Securing a public-facing IIS 6.0 web server involves configuring custom error responses for restricted extensions and enabling URL scanning to block buffer overflow attempts.
Web Application Attacks & Post-Exploitation
Question
Your company has been hired to provide consultancy, development, and integration services for a company named Brainbridge International. You have prepared a case study to plan the upgrade for the company. Based on the case study, which of the following steps will you suggest for configuring WebStore1? Each correct answer represents a part of the solution. Choose two.
Options
- ACustomize IIS 6.0 to display a legal warning page on the generation of the 404.2 and
- BMove the WebStore1 server to the internal network.
- CConfigure IIS 6.0 on WebStore1 to scan the URL for known buffer overflow attacks.
- DMove the computer account of WebStore1 to the Remote organizational unit (OU).
Explanation
Securing a public-facing IIS 6.0 web server involves configuring custom error responses for restricted extensions and enabling URL scanning to block buffer overflow attempts.
Common mistakes.
- B. Moving WebStore1 to the internal network would make it inaccessible to external customers, which is not viable for a public-facing e-commerce server.
- D. Moving the WebStore1 computer account to a different OU affects Group Policy application scope but does not directly harden the IIS configuration or mitigate web-facing attack vectors.
Concept tested. IIS 6.0 security hardening for public-facing web servers
Reference. https://learn.microsoft.com/en-us/previous-versions/iis/6.0-sdk/ms525076(v=vs.90)
Topics
#IIS configuration#buffer overflow protection#web server hardening#404 error handling
Community Discussion
No community discussion yet for this question.