General Security Resources
Best Practice Documents
Unix Security
Microsoft and Windows Security

Internet Information Server (IIS) is the Web and FTP server that is included with Windows NT and Windows 2000. IIS contains a number of serious security vulnerabilities, such as the ones exploited by the Code Red and Nimda worms. IIS should be disabled on all Windows systems unless it is absolutely necessary. System administrators running IIS should refer to the following resources to secure and protect their systems:

Mac OSX Security