R
renis
Guest
I don't understand what you expest from a control panel... to be a Bank???
Control Panel is an automated system for hosting. The only thing (for security) that is responsible, is creating different users with different permissions for INETPUB folder. That's all.
If everything was done by Plesk, what has to do a system administrator then????
1. ASP.NET
YOU must edit and put right permissions. ASP.NET is not a Plesk product. The same works for Merak
2. Don't use AwStats. They kill the server even without vulnerabilities.
3. Install a firewall and close ports u don't use
4. Every OS is vulnerable. But using system acount can't be considered e vulnerability. If you want, just create different accounts for every service. You can't expect Windows to do that, because are most of third party softwares that choose to use system as service account. If you don't want that. just change it.
5. Tools like IISLockDown exist from 5 years now. Even free
6. If an attacker has enough access to install Serv-u, why he just dont take control of the system directly, but fist install serv-u and then take control...
Come on...
You want a software that will be able to do what you have in your mind, without pushing a key over keyboard... or better what will will have in yout mind in the future
Control Panel is an automated system for hosting. The only thing (for security) that is responsible, is creating different users with different permissions for INETPUB folder. That's all.
If everything was done by Plesk, what has to do a system administrator then????
1. ASP.NET
YOU must edit and put right permissions. ASP.NET is not a Plesk product. The same works for Merak
2. Don't use AwStats. They kill the server even without vulnerabilities.
3. Install a firewall and close ports u don't use
4. Every OS is vulnerable. But using system acount can't be considered e vulnerability. If you want, just create different accounts for every service. You can't expect Windows to do that, because are most of third party softwares that choose to use system as service account. If you don't want that. just change it.
5. Tools like IISLockDown exist from 5 years now. Even free
6. If an attacker has enough access to install Serv-u, why he just dont take control of the system directly, but fist install serv-u and then take control...
Come on...
You want a software that will be able to do what you have in your mind, without pushing a key over keyboard... or better what will will have in yout mind in the future